Apple has released an urgent security update for Beats Studio Buds after researchers discovered a serious Bluetooth vulnerability that could allow nearby attackers to listen to users’ conversations.
Quick Summary – TLDR:
- Apple has patched a high severity vulnerability affecting Beats Studio Buds.
- The flaw could allow attackers within Bluetooth range to access a device’s microphone and eavesdrop on conversations.
- Security researchers found the issue in Airoha Bluetooth components used by the earbuds.
- Apple has fixed the problem through Beats Firmware Update 1B211, which is delivered automatically to affected devices.
What Happened?
Apple has issued a security update to address CVE-2025-20701, a vulnerability affecting Beats Studio Buds wireless earbuds. The flaw could allow attackers located within Bluetooth range to listen through the microphone of a device that has not yet been paired and is actively seeking pairing requests.
The issue was discovered by security researchers Dennis Heinze and Frieder Steinmetz of ERNW GmbH, who previously presented their findings at the TROOPERS security conference in Germany.
🔴 Apple patches high-severity eavesdropping flaw in Beats Studio Buds
— NewsTongue (@NewsTongueX) June 18, 2026
Apple released Beats Firmware Update 1B211 to fix CVE-2025-20701, a vulnerability (severity 8.8/10) that allowed attackers within Bluetooth range to impersonate paired devices and eavesdrop through the… pic.twitter.com/AUM59NNh3j
Apple Addresses High Severity Bluetooth Vulnerability
The security flaw carries a CVSS score of 8.8, placing it in the high severity category. According to Apple, the issue stems from incorrect authorization in the Bluetooth functionality used by affected devices.
In its security advisory, Apple stated:
Apple also noted that the vulnerability exists in open source code and that its software was among the affected projects.
To address the issue, the company released Beats Firmware Update 1B211. The update is automatically installed when affected earbuds are paired with a nearby iPhone, iPad, or Mac.
Users can verify whether the update has been installed by checking the firmware version through Bluetooth settings on their Apple devices.
Researchers Demonstrated Powerful Attack Capabilities
The vulnerability was traced to the Airoha Bluetooth audio SDK and Airoha system on chip components used in the earbuds.
Researchers said the flaw originated from a missing authentication weakness in the Bluetooth BR/EDR radio implementation. During their research, they developed a proof of concept attack demonstrating how attackers could initiate a phone call and listen to conversations occurring near a targeted device.
The researchers warned:
These findings highlight how a seemingly simple wireless earbud vulnerability could be leveraged for much broader attacks.
Additional Vulnerabilities Increase the Risk
Researchers also identified two related vulnerabilities, CVE-2025-20700 and CVE-2025-20702, affecting the same Bluetooth component.
When combined with CVE-2025-20701, attackers could potentially:
- Hijack Bluetooth connections between headphones and smartphones.
- Issue commands through the Bluetooth Hands Free Profile.
- Read and write device memory.
- Retrieve contacts and call history.
- Extract Bluetooth link keys.
- Initiate phone calls.
- Take control of headphone functions.
The researchers noted that attackers could abuse trusted connections between audio devices and smartphones, opening the door to multiple attack scenarios.
Real World Attacks Remain Difficult
Despite the severity of the vulnerabilities, researchers emphasized that successful exploitation requires both physical proximity and advanced technical expertise.
Because attackers must be within Bluetooth range of the target device, the threat is considered more relevant to targeted surveillance operations than widespread attacks. The researchers suggested that such techniques would most likely be used against high value individuals rather than ordinary consumers.
Still, the discovery serves as a reminder that even everyday consumer devices such as wireless earbuds can become attractive targets when security weaknesses are uncovered.
SQ Magazine Takeaway
I think this incident is a strong reminder that security risks are no longer limited to smartphones and computers. Wireless earbuds have become powerful connected devices, and vulnerabilities in their Bluetooth systems can expose far more information than most users realize. While the attack requires skill and proximity, the ability to access microphones, call history, and trusted Bluetooth connections shows why keeping device firmware updated is just as important as updating a phone or laptop. If you own Beats Studio Buds, installing the latest firmware should be a priority.
