ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Vulnerabilities

Apple patches CVE-2025-20701 in Beats Studio Buds Bluetooth audio pairing

Source headline: Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 3 hours ago

Intelligence Summary

Apple has released updates for its Beats Studio Buds to fix a Bluetooth audio authorization flaw. The issue, CVE-2025-20701, could allow nearby attackers to pair a Bluetooth audio device without the user’s consent. Because the affected pairing flow is tied to the Airoha Bluetooth audio SDK, it raises the risk of unauthorized audio access. The vulnerability has a high CVSS score of 8.8, indicating a serious security weakness. Users should update their earbuds and companion software promptly to reduce eavesdropping risk.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#cve #apple #beats-studio-buds #bluetooth #microphone-eavesdropping
Original reporting The Hacker News Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
Open original source

Related Pulse Signals

View all signals
Critical · Vulnerabilities Splunk Enterprise CVE-2026-20253 enables unauthenticated RCE shortly after disclosure Critical · Vulnerabilities F5 ships out-of-band updates to fix critical NGINX code execution flaws Critical · Vulnerabilities Splunk fixes OS command injection in AI Toolkit; Atlassian patches deps Critical · Vulnerabilities F5 addresses critical NGINX issues that could lead to code execution