CVE-2025-32058
Published: 15 February 2026
Summary
CVE-2025-32058 is a critical-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Blackhat (inferred from references). Its CVSS base score is 9.3 (Critical).
Operationally, ranked at the 5.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Deeper analysis
CVE-2025-32058 affects the Infotainment ECU manufactured by Bosch, which incorporates a RH850 module for CAN communication. This module connects to the infotainment main SoC over the INC interface via a custom protocol. The vulnerability arises during processing of these protocol requests on the V850 side of the RH850, classified as CWE-121 (stack-based buffer overflow). It was first identified in the Nissan Leaf ZE1 manufactured in 2020 and carries a CVSS v3.1 base score of 9.3 (AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).
An attacker requires prior code execution on the infotainment main SoC to exploit the vulnerability. Successful exploitation grants code execution on the RH850 module, allowing the attacker to send arbitrary CAN messages over the connected CAN bus. The local attack vector, low complexity, lack of privileges or user interaction, and scope change to high-impact confidentiality, integrity, and availability effects underscore its severity in an automotive context.
Advisories provide further details, including a PCA Cybersecurity resource on vulnerabilities in Bosch-manufactured Nissan infotainment (https://pcacybersecurity.com/resources/advisory/vulnerabilities-in-nissan-infotainment-manufactured-by-bosch) and a Black Hat Asia 2025 presentation on remote exploitation of the Nissan Leaf (http://i.blackhat.com/Asia-25/Asia-25-Evdokimov-Remote-Exploitation-of-Nissan-Leaf.pdf). The CVE was published on 2026-02-15.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-206907
Vulnerability details
The Infotainment ECU manufactured by Bosch uses a RH850 module for CAN communication. RH850 is connected to infotainment over the INC interface through a custom protocol. There is a vulnerability during processing requests of this protocol on the V850 side…
more
which allows an attacker with code execution on the infotainment main SoC to perform code execution on the RH850 module and subsequently send arbitrary CAN messages over the connected CAN bus. First identified on Nissan Leaf ZE1 manufactured in 2020.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Insufficient information to map techniques.CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires identification, reporting, and correction of the stack-based buffer overflow flaw in the RH850 module's custom protocol request processing.
Mandates validation of information inputs from the INC interface custom protocol to prevent buffer overflows during processing on the RH850 V850 side.
Implements memory protection mechanisms such as stack canaries or address space layout randomization to mitigate exploitation of the stack-based buffer overflow in the RH850 module.