CVE-2025-32063 – Enabling SSH server on Infotainment ECU

CVE ID : CVE-2025-32063

Published : Feb. 15, 2026, 11:15 a.m. | 1 hour, 16 minutes ago

Description : There is a misconfiguration vulnerability inside the Infotainment ECU manufactured by BOSCH. The vulnerability happens during the startup phase of a specific systemd service, and as a result, the following developer features will be activated: the disabled firewall and the launched SSH server.

First identified on Nissan Leaf ZE1 manufactured in 2020.

Severity: 6.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…