Apple released a firmware update for Beats Studio Buds to address CVE-2025-20701, a high-severity vulnerability affecting nearby attackers' ability to eavesdrop through the earbuds' microphone.
The flaw stems from incorrect authorization logic in the Airoha Bluetooth audio SDK. The vulnerability allows an attacker within Bluetooth range to pair with the earbuds without explicit user consent, enabling unauthorized microphone access. Apple assigned the vulnerability a CVSS score of 8.8, reflecting its high severity.
The attack requires physical proximity. An attacker must be close enough to establish a Bluetooth connection, typically within 10 meters of the target device. Once paired, the attacker gains access to the microphone feed, potentially capturing sensitive conversations, passwords, or other audio information the user believes private.
Beats Studio Buds users should update their firmware immediately through the Beats app. The update addresses the authorization flaw by implementing proper consent verification before allowing new device pairing. Users with automatic updates enabled should already have received the patch.
This vulnerability highlights a broader risk in wireless audio devices. Bluetooth peripherals often lack the security hardening applied to smartphones and computers, making them attractive attack vectors. The Airoha SDK powers many audio products beyond Beats, so other manufacturers may face similar exposure.
Organizations allowing employees to use wireless earbuds for sensitive calls should mandate the latest firmware versions and consider whether such devices are appropriate for highly confidential discussions. Individuals handling sensitive information should assume any unpatched Bluetooth device poses a microphone eavesdropping risk.
Apple's patch removes the authorization bypass, restoring the requirement for user confirmation before pairing. Users should verify their Beats Studio Buds have installed the latest firmware and remain cautious of unexpected Bluetooth pairing requests.