MAL-2026-1624 Malicious code in @inter-ikea-gallery/integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41711fef02809de5ee632f210cfe1102fe06ee4273743b408ec9ae92d7cb9277 The package @inter-ikea-gallery/integration was found to contain malicious code...

Malicious code in @inter-ikea-gallery/integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41711fef02809de5ee632f210cfe1102fe06ee4273743b408ec9ae92d7cb9277 The package @inter-ikea-gallery/integration was found to contain malicious code...

CVE-2026-3588

A server-side request forgery SSRF vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request...

EUVD-2026-10343

A server-side request forgery SSRF vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request...

CVE-2026-3588

A server-side request forgery SSRF vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request...

CVE-2026-3588

CVE-2026-3588 describes a server-side request forgery in IKEA Dirigera v2.866.4. An attacker can exfiltrate private keys by sending a crafted request to the affected server, indicating a potential compromise of sensitive credentials. The CVSS 3.1 base score is 7.5 (HIGH) with attack vector Adjace...

CVE-2026-3588 Server-Side Request Forgery (SSRF) in ikea dirigera

A server-side request forgery SSRF vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request...

CVE-2026-3588

A server-side request forgery SSRF vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request...

CVE-2026-3588 Server-Side Request Forgery (SSRF) in ikea dirigera

A server-side request forgery SSRF vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request...

IKEA Dirigera 代码问题漏洞

IKEA Dirigera is a smart home system gateway device developed by the Dutch company IKEA. Version IKEA Dirigera v2.866.4 contains a code vulnerability caused by server-side request forgery, which may lead to the disclosure of private keys through specially crafted requests...

PT-2026-24081

A server-side request forgery SSRF vulnerability in IKEA Dirigera v2.866.4 allows an attacker to exfiltrate private keys by sending a crafted request...

Malicious Package

Overview @afg-ikea/ikea-modals is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in @afg-ikea/ikea-modals (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec5202678b3acce22244ccd41e821e68167ca297f94450cb3b5debeac9ec2c50 The package @afg-ikea/ikea-modals was found to contain malicious code. Source: ghsa-malware...

MAL-2026-519 Malicious code in @afg-ikea/ikea-modals (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec5202678b3acce22244ccd41e821e68167ca297f94450cb3b5debeac9ec2c50 The package @afg-ikea/ikea-modals was found to contain malicious code. Source: ghsa-malware...

MAL-2026-517 Malicious code in @afg-ikea/ikea-family-registration-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1ac39afe31e807b61c9297e45f81042917f9e889e1ceb953fcaeba093c75576 The package @afg-ikea/ikea-family-registration-module was found to contain malicious code. Source: ghsa-malware...

Malicious Package

Overview @afg-ikea/ikea-kiosk-related-components is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organizatio...

Malicious code in @afg-ikea/ikea-family-registration-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1ac39afe31e807b61c9297e45f81042917f9e889e1ceb953fcaeba093c75576 The package @afg-ikea/ikea-family-registration-module was found to contain malicious code. Source: ghsa-malware...

Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f627f92f7e8b9ae99be35718e43eb73ed63a8818cea75a131f4bf85738cab2c3 The package @afg-ikea/ikea-kiosk-related-components was found to contain malicious code. Source: ghsa-malware...

MAL-2026-518 Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f627f92f7e8b9ae99be35718e43eb73ed63a8818cea75a131f4bf85738cab2c3 The package @afg-ikea/ikea-kiosk-related-components was found to contain malicious code. Source: ghsa-malware...

MAL-2025-138577 Malicious code in ikea-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2d28e0f1a30aac98cbe4b49221df9736b6cbe4d629d85b5b57d50cc4163f72df The OpenSSF Package Analysis project identified 'ikea-test' @ 1.0.0 npm as malicious. It is considered malicious because: - The package executes...