CVE-2025-32056

Anti-Theft Bypass for Infotainment ECU

CVSS 4 MEDIUMEPSS 0.3%CWE-1241

The anti-theft protection mechanism can be bypassed by attackers due to weak response generation algorithms for the head unit. It is possible to reveal all 32 corresponding responses by sniffing CAN traffic or by pre-calculating the values, which allow to bypass the protection. First identified on Nissan Leaf ZE1 manufactured in 2020.

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Affected products

Bosch · Infotainment system ECU

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://i.blackhat.com/Asia-25/Asia-25-Evdokimov-Remote-Exploitation-of-Nissan-Leaf.pdf https://pcacybersecurity.com/resources/advisory/vulnerabilities-in-nissan-infotainment-manufactured-by-bosch https://www.nissan.co.uk/vehicles/new-vehicles/leaf.html