Vulnerability Details CVE-2026-3588
A server-side request forgery (SSRF) vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 1.4%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2026-3588
-
cpe:2.3:h:ikea:dirigera:-
-
cpe:2.3:o:ikea:dirigera_firmware:2.866.4