APPLE has released a firmware update for its Beats Studio Buds to address a severe eavesdropping vulnerability identified as CVE-2025-20701. This flaw allowed nearby hackers to exploit improper authentication in the earbuds' Bluetooth firmware, potentially enabling them to listen through the device's microphone. The update, delivered automatically while connected to compatible Apple devices, is pivotal due to the vulnerability's high severity rating of 8.8 out of 10.
This issue arose from security revelations related to Bluetooth chips by Airoha Systems, affecting multiple manufacturers, including Jabra, Bose, and JBL, which have also issued patches. Users are advised to review their firmware versions and remain cautious with Bluetooth settings to enhance security.