Jump to the main content block
  1. Home
  2. Hot News

【Vulnerability Alert】 Chromium-based browsers contain 79 high-risk security vulnerabilities. Please confirm and apply patches as soon as possible.

publish date : 2026-05-22 update date : 2026-05-22

Source: Ministry of education information & communication security contingency platform

"" "" ""

Publication Number TACERT-ANA-2026052104055353 Publication Time 2026-05-21 16:39:53
Incident Type ANA-Vulnerability Alert Discovery Time 2026-05-21 16:39:53
Impact Level Medium  
[Subject]
[Vulnerability Alert] Chromium-based browsers contain 79 high-risk security vulnerabilities. Please confirm and apply patches as soon as possible.
[Content]

Forwarded from the National Institute of Cyber Security NISAC-200-202605-00000009

Researchers have discovered that Chromium-based browsers, including Google Chrome, Microsoft Edge, Vivaldi, and Brave, contain 79 high-risk security vulnerabilities (CVE-2026-8509 to CVE-2026-8587). The vulnerability types include Use After Free and Heap-based Buffer Overflow. The most severe vulnerabilities may allow unauthenticated remote attackers to induce users to open specially crafted HTML pages, thereby escaping the browser sandbox environment. Please confirm and apply patches as soon as possible.

Intelligence Sharing Level: WHITE (the intelligence content is information that may be publicly disclosed)
[Affected Platform]

● Versions earlier than Google Chrome 148.0.7778.167 (exclusive)
● Versions earlier than Microsoft Edge 148.0.3967.70 (exclusive)
● Versions earlier than Vivaldi 7.9.3970.67 (exclusive)
● Versions earlier than Brave 1.90.122 (exclusive)
[Recommended Actions]
  1. Please update Google Chrome browser to version 148.0.7778.167 (inclusive) or later.
    https://support.google.com/chrome/answer/95414?hl=zh-Hant
  2. Please update Microsoft Edge browser to version 148.0.3967.70 (inclusive) or later.
    https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1
  3. Please update Vivaldi browser to version 7.9.3970.67 (inclusive) or later.
    https://help.vivaldi.com/desktop/install-update/update-vivaldi/
  4. Please update Brave browser to version 1.90122 (inclusive) or later.
    https://community.brave.com/t/how-to-update-brave/384780

[Reference]

1. https://support.google.com/chrome/answer/95414?hl=zh-Hant
2. https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1
3. https://help.vivaldi.com/desktop/install-update/update-vivaldi/
4. https://community.brave.com/t/how-to-update-brave/384780
5. https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_12.html
6. https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-8509
7. https://vivaldi.com/blog/desktop/minor-update-nine-7-10/
8. https://brave.com/latest/
(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw
Organizer: Computer Center
Click Num:
Print