Apple Patches Critical Bluetooth Flaw in Beats Studio Buds Allowing Unauthenticated Eavesdropping
What Happened — Apple released firmware update 1B211 for Beats Studio Buds to close CVE‑2025‑20701, a high‑severity Bluetooth vulnerability that let an unauthenticated attacker within range listen to the device’s microphone and, when chained with two related CVEs, issue commands to the paired phone.
Why It Matters for Compliance & Audit Readiness
- The flaw bypasses logical‑access controls (SOC 2 CC6.1) and demonstrates why continuous evidence of device‑level security controls is essential.
- Mapping this vulnerability to your control inventory provides audit‑ready proof that you monitor and remediate endpoint risks in real time.
- Ongoing firmware‑validation processes satisfy SOC 2’s requirement for systematic change management and risk‑based monitoring.
Who Is Affected – Consumer‑electronics manufacturers, enterprises with BYOD programs, and any organization that permits Bluetooth audio accessories on corporate devices.
Recommended Actions – Deploy the Beats firmware update immediately; verify the version via Bluetooth settings; incorporate Bluetooth‑device inventory into your asset‑management controls; map the remediation to SOC 2 CC6.1 (Logical Access) and CC7.1 (System Operations) and capture update logs as audit evidence. Source: BleepingComputer
Technical Notes – The vulnerability stems from missing authentication in the Bluetooth BR/EDR radio of the Airoha SoC (CVE‑2025‑20701). When combined with CVE‑2025‑20700 and CVE‑2025‑20702, attackers can read/write RAM, extract link keys, retrieve call history, contacts, and place arbitrary calls. Source: same