Nissan Leaf ZE1 Kernel Module Signature Verification Vulnerability Allowing Code Execution in Kernel Context

Vulnerability

A vulnerability exists in the Nissan Leaf ZE1 infotainment system manufactured in 2020, due to the lack of kernel module signature verification. This flaw allows an attacker with root access, potentially exploiting other vulnerabilities, to load custom kernel modules and execute code in the kernel context. Such an action could lead to complete control over the system.

Impact

Exploitation of this vulnerability could result in unauthorized code execution within the kernel, allowing an attacker to gain full control over the vehicle's systems.

Added: Feb 15, 2026, 11:34 AM

Updated: Feb 15, 2026, 11:34 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.1

remediation

0.0

relevance

2.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.1

remediation

0.0

relevance

2.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nissan Leaf ZE1 Kernel Module Signature Verification Vulnerability Allowing Code Execution in Kernel Context

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating