Apple Patches Beats Studio Buds Eavesdropping Flaw

Apple released Beats Firmware Update 1B211 to fix CVE-2025-20701, a high-severity vulnerability in the Airoha Bluetooth audio SDK. The flaw allowed nearby attackers to pair with unpaired Beats Studio Buds and listen through the microphone without user consent. ERNW GmbH researchers disclosed the issue at the TROOPERS conference in June 2025.