Apple Patches Beats Studio Buds Flaw That Could Let Attackers Eavesdrop via Microphone
Apple released firmware update 1B211 for Beats Studio Buds to fix CVE-2025-20701, a Bluetooth flaw that could let attackers within range pair with unpaired earbuds and eavesdrop via the microphone.
Apple has released a firmware update for Beats Studio Buds to patch a Bluetooth vulnerability that could allow a nearby attacker to pair with the earbuds and listen through their microphone. The flaw, tracked as CVE-2025-20701, was disclosed by researchers at a security conference in Germany in 2025 and affects the Airoha system-on-a-chip used in the earbuds.
The vulnerability carries a CVSS score of 8.8, indicating high severity. It stems from an incorrect authorization process in the Airoha Bluetooth audio SDK. Devices in pairing mode did not properly verify the identity of the connecting device, opening a window for an attacker within Bluetooth range to pose as a legitimate partner and connect before the user completes pairing.
Attackers could chain flaws for deeper compromise
Researchers demonstrated that CVE-2025-20701 could be combined with other flaws in the same Airoha component. By chaining these vulnerabilities, an attacker could:
- Eavesdrop via the headphone microphone.
- Extract Bluetooth pairing keys.
- Impersonate trusted headphones.
- Compromise the user's phone, enabling call hijacking, contact extraction, and triggering voice assistants.
The attack requires the attacker to be within Bluetooth range of the target device, and exploitation is complex. It is not a trivial attack for opportunistic criminals, but it poses a real risk for high-profile individuals targeted by motivated adversaries.
Firmware update rolls out automatically
Apple shipped Beats Firmware Update 1B211 to address the vulnerability. The update rolls out automatically when the earbuds are near and connected to an iPhone, iPad, or Mac. To receive the update, the earbuds must be paired with the Apple device, in their charging case with the lid closed, and have sufficient charge. The Apple device must be nearby with Bluetooth enabled.
Users can check their firmware version on iOS or iPadOS by going to Settings > Bluetooth, tapping the info icon next to their Beats Studio Buds, and looking for version 1B211. If an older version is displayed, users should keep the earbuds in their case near their Apple device to allow the update to complete. The process can take time and may happen silently in the background.
Apple did not provide a manual update option. The company recommends users ensure their earbuds are regularly connected to their Apple devices to receive future security patches automatically.
Fact check
-
The vulnerability is tracked as CVE-2025-20701 with a CVSS score of 8.8.
reported · source
-
The flaw affects the Airoha Bluetooth audio SDK and was disclosed at a security conference in Germany in 2025.
reported · source
-
Apple shipped Beats Firmware Update 1B211 to fix the vulnerability.
reported · source
-
The update rolls out automatically when the earbuds are paired with an Apple device and in their charging case.
reported · source
Source reporting (2)
Join the conversation
You need to be registered and logged in to comment on blog articles.
Related Articles
Microsoft discovers USB worm that hijacks clipboard, steals cryptocurrency via Tor
Jun 21, 2026
FortiBleed Campaign Compromises 86,644 FortiGate Devices, CISA Issues Emergency Warning
Jun 20, 2026
FSF Patches Two-Year-Old Flaw as Security Incidents Hit Open Source, Supply Chains, and Major Brands
Jun 20, 2026
0 Comments
No comments yet
Be the first to share your thoughts on this article.