Skip to main content

Linux CVE-2025-32060

MEDIUM
Improper Verification of Cryptographic Signature (CWE-347)
2026-02-15 cve@asrg.io
6.7
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.7 MEDIUM
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 21:54 vuln.today
CVE Published
Feb 15, 2026 - 11:15 nvd
MEDIUM 6.7

DescriptionCVE.org

The system suffers from the absence of a kernel module signature verification. If an attacker can execute commands on behalf of root user (due to additional vulnerabilities), then he/she is also able to load custom kernel modules to the kernel space and execute code in the kernel context. Such a flaw can lead to taking control over the entire system.

First identified on Nissan Leaf ZE1 manufactured in 2020.

AnalysisAI

The system suffers from the absence of a kernel module signature verification. If an attacker can execute commands on behalf of root user (due to additional vulnerabilities), then he/she is also able to load custom kernel modules to the kernel space and execute code in the kernel context. [CVSS 6.7 MEDIUM]

Technical ContextAI

Classified as CWE-347 (Improper Verification of Cryptographic Signature). The system suffers from the absence of a kernel module signature verification. If an attacker can execute commands on behalf of root user (due to additional vulnerabilities), then he/she is also able to load custom kernel modules to the kernel space and execute code in the kernel context. Such a flaw can lead to taking control over the entire system.

First identified on Nissan Leaf ZE1 manufactured in 2020.

Affected ProductsAI

The system suffers from the absence of a kernel module signature verification

RemediationAI

Monitor vendor advisories for a patch.

Share

CVE-2025-32060 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy