CVE-2025-32063

Name of the Vulnerable Software and Affected Versions BOSCH Infotainment ECU (affected versions not specified)

Description A misconfiguration exists within the Infotainment ECU manufactured by BOSCH. This issue occurs during the startup phase of a specific systemd service, leading to the activation of developer features, including a disabled firewall and a launched SSH server. The vulnerability was initially identified on a Nissan Leaf ZE1 manufactured in 2020.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.