【Vulnerability Alert】Chromium-based Browsers Have Security Vulnerabilities (CVE-2025-5419), Please Confirm and Patch as Soon as Possible

• Subject: 【Vulnerability Alert】Chromium-based Browsers Have Security Vulnerabilities (CVE-2025-5419), Please Confirm and Patch as Soon as Possible

• Content:
  • Forwarded from National Information Security Information Sharing and Analysis Center NISAC-200-202506-00000061
  • Researchers have discovered a Heap Overflow vulnerability (CVE-2025-5419) in Chromium-based browsers such as Google Chrome, Microsoft Edge, Vivaldi, Brave, and Opera. A remote attacker can corrupt memory through a malicious HTML page, leading to remote arbitrary code execution or sandbox escape. This vulnerability has been exploited by hackers, please confirm and patch as soon as possible.
• Affected Platforms:
  • Google Chrome versions prior to 137.0.7151.68 (exclusive)
  • Microsoft Edge (Based on Chromium) versions prior to 137.0.3296.62 (exclusive)
  • Vivaldi versions prior to 7.4.3684.50 (exclusive)
  • Brave versions prior to 1.79.119 (exclusive)
  • Opera versions prior to 119.0.5497.70 (exclusive)
• Suggested Measures:
  1. Please update Google Chrome browser to version 137.0.7151.68 (inclusive) or later
     • [https://support.google.com/chrome/answer/95414?hl=zh-Hant](https://support.google.com/chrome/answer/95414?hl=zh-Hant)
  2. Please update Microsoft Edge browser to version 137.0.3296.62 (inclusive) or later
     • [https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1](https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1)
  3. Please update Vivaldi browser to version 7.4.3684.50 (inclusive) or later
     • [https://help.vivaldi.com/desktop/install-update/update-vivaldi/](https://help.vivaldi.com/desktop/install-update/update-vivaldi/)
  4. Please update Brave browser to version 1.79.119 (inclusive) or later
     • [https://community.brave.com/t/how-to-update-brave/384780](https://community.brave.com/t/how-to-update-brave/384780)
  5. Please update Opera browser to version 119.0.5497.70 (inclusive) or later
     • [https://help.opera.com/en/latest/crashes-and-issues/#updateBrowser](https://help.opera.com/en/latest/crashes-and-issues/#updateBrowser)
• References:
  1. [https://nvd.nist.gov/vuln/detail/CVE-2025-5419](https://nvd.nist.gov/vuln/detail/CVE-2025-5419)
  2. [https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.htm](https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.htm)
  3. [https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-5419](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-5419)
  4. [https://vivaldi.com/blog/desktop/minor-update-two-7-4/](https://vivaldi.com/blog/desktop/minor-update-two-7-4/)

Computer and Communications Center
Network Systems Division