The security expert Troy Hunt discovered that it is possible to remotely control features of a Nissan Leaf via API. The vulnerability could be exploited by hackers to remotely manage some features of the popular electric car. The knowledge of the Nissan LEAFs VIN could allow attackers to control air conditioning and access driving data. An attacker could exploit the flaw to turn on the AC of a parked car draining its battery, but it is not possible to control the engine neither lock or unlock the vehicle.”]
Source: https://securityaffairs.co/wordpress/44790/hacking/nissan-leaf-hack.html