VYPR
High severity7.5NVD Advisory· Published Mar 9, 2026· Updated May 6, 2026

CVE-2026-3588

CVE-2026-3588

Description

A server-side request forgery (SSRF) vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:o:ikea:dirigera_firmware:2.866.4:*:*:*:*:*:*:*
  • Ikea/Dirigerallm-create2 versions
    = 2.866.4+ 1 more
    • (no CPE)range: = 2.866.4
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.