VDB
CVE-2026-5281
CVE-2026-5281
PUBLISHED
KEV
On April 1, 2026, Microsoft published a security update to address vulnerabilities in the following product: Microsoft Edge Stable Channel - versions prior to 146.0.3856.97 Microsoft has indicated that CVE-2026-5281 has an available exploit. The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.
EPSS 0.65% · 71.0th percentile
Risk Scores
EPSS Score
0.65%
71.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Stable Channel Chrome for Desktop – versions prior to 146.0.7680.177/178 (Windows/Mac) and 146.0.7680.177 (Linux) | ||
| Microsoft | Stable Channel Chrome for Desktop – versions prior to 146.0.7680.177/178 (Windows/Mac) and 146.0.7680.177 (Linux) | |
| Microsoft | Microsoft Edge Stable Channel - versions prior to 146.0.3856.97 |
Timeline
- May 6, 2024 VulnCheck KEV Exploitation
- Mar 31, 2026 PoC Published
- Apr 1, 2026 CISA KEV Added
- Apr 1, 2026 EPSS Score
- Apr 1, 2026 CVE Published
- Apr 1, 2026 PoC Published
- Apr 1, 2026 PoC Published
- Apr 1, 2026 Security Advisory
- Apr 2, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
References
- https://cyber.gc.ca/en/alerts-advisories/google-chrome-security-advisory-av26-306 advisory
- https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_31.html vendor
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2026-5281 advisory
- https://cyber.gc.ca/en/alerts-advisories/microsoft-edge-security-advisory-av26-315 advisory
- https://learn.microsoft.com/en-us/DeployEdge/microsoft-edge-relnotes-security#april-1-2026 vendor