MEDIUM
Zero Motorcycles
CVE published 2026-04-21
CVE-2026-1354
CVE-2026-1354 describes a Bluetooth pairing weakness in Zero Motorcycles firmware versions 44 and prior. If the motorcycle is in Bluetooth pairing mode and an attacker is nearby and able to complete the pairing process, the attacker can forcibly pair a device and then use over-the-air firmware update functionality to potentially upload malicious firmware. The advisory says the attacker's device must remai [truncated]