United States issues patch for Beats Studio Buds flaw
Read, Watch or Listen
Cupertino, California – Apple has issued an urgent firmware update for its Beats Studio Buds wireless earbuds to fix a high-severity security vulnerability that could allow nearby attackers to eavesdrop on users. The flaw, tracked as CVE-2025-20701 and assigned a CVSS score of 8.8, stems from incorrect authorization in the Airoha Bluetooth audio software development kit used by the earbuds. This authorization weakness allows an unauthorized third party to pair their own device with the earbuds without the owner’s knowledge or consent, significantly increasing the risk to user privacy. Once this unauthorized pairing occurs, an attacker in close physical proximity could potentially access the earbuds’ microphones and listen to private conversations or ambient audio. Apple is distributing the fix as a firmware update and is advising all Beats Studio Buds users to connect their earbuds to a paired iPhone, iPad, or Android device to trigger and complete the update process. The company has not reported any confirmed cases of the vulnerability being actively exploited, but the high severity rating and potential for covert eavesdropping have prompted an immediate call for users to install the latest available firmware. By applying the update, users can close the unauthorized pairing loophole and reduce the risk that nearby attackers might gain access to audio captured by the device’s microphones.
Prepared by Jonathan Pierce and reviewed by editorial team.
Timeline of Events
- Earlier this year Vulnerability discovered in Bluetooth SDK
- Recently CVE-2025-20701 identifier assigned publicly
- This week Apple prepares firmware security update
- Today Firmware patch released for Beats earbuds
- Today Apple discloses high-severity pairing vulnerability
- Today Company says no exploits seen yet
- Today Users instructed to update firmware immediately
- In coming days Automatic rollout reaches remaining devices
Why This Matters to You
Your Beats Studio Buds could be a privacy risk. A flaw lets strangers listen in without you knowing. Apple's fix is a firmware update. Connect your earbuds to your paired device to trigger the update.
The Bottom Line
Your conversations should be private. This update ensures they stay that way. No known cases of eavesdropping yet, but better safe than sorry. Worth forwarding if you know a Beats user.
- Articles Published:
- 1
- Right Leaning:
- 0
- Left Leaning:
- 0
- Neutral:
- 1
- Distribution:
- Left 0%, Center 100%, Right 0%
Not specified in source.
Not specified in source.
Coverage of Story:
From Left
No left-leaning sources found for this story.
From Right
No right-leaning sources found for this story.
Comments