Posting Date: 2026/04/29

【Vulnerability Alert】60 High-Risk Security Vulnerabilities in Chromium-Based Browsers; Prompt Verification and Patching Recommended

Subject: 【Vulnerability Alert】60 High-Risk Security Vulnerabilities in Chromium-Based Browsers; Prompt Verification and Patching Recommended

Description:
- Forwarded from National Information Security Analysis Center (NISAC) Security Alert NISAC-200-202604-00000008.
- Researchers have discovered 60 high-risk security vulnerabilities (CVE-2026-5858 to CVE-2026-5915, CVE-2026-5918, and CVE-2026-5919) in Chromium-based browsers, including Google Chrome, Microsoft Edge, Vivaldi, and Brave. The vulnerability types include Heap-based Buffer Overflow and Use After Free. In the most severe cases, an unauthenticated remote attacker could cause memory corruption or execute arbitrary code via a specially crafted HTML page. Please verify and perform patching as soon as possible.
Affected Platforms:
- Google Chrome versions prior to 147.0.7727.55
- Microsoft Edge versions prior to 147.0.3912.60
- Vivaldi versions prior to 7.9.3970.50
- Brave versions prior to 1.89.132
Recommended Actions:
1. Please update Google Chrome to version 147.0.7727.55 or later: https://support.google.com/chrome/answer/95414?hl=zh-Hant
2. Please update Microsoft Edge to version 147.0.3912.60 or later: https://support.microsoft.com/en-us/topic/microsoft-edge-update-settings-af8aaca2-1b69-4870-94fe-18822dbb7ef1
3. Please update Vivaldi to version 7.9.3970.50 or later: https://help.vivaldi.com/desktop/install-update/update-vivaldi/
4. Please update Brave to version 1.89.132 or later: https://community.brave.com/t/how-to-update-brave/384780
Reference:

Computer and Communication Center
Network Systems Division