HomeIntelligenceBrief
VULNERABILITY BRIEF🔴 Critical Vulnerability

Apple Patches Critical Bluetooth Flaw in Beats Studio Buds Allowing Unauthenticated Eavesdropping

Apple issued firmware update 1B211 to close CVE‑2025‑20701, a Bluetooth vulnerability that let attackers within range listen to conversations and, when chained with related CVEs, control the paired phone. The issue highlights the need for continuous endpoint‑security monitoring and SOC 2‑aligned control mapping.

LiveThreat™ Intelligence · 📅 June 18, 2026· 📰 bleepingcomputer.com
🔴
Severity
Critical
VU
Type
Vulnerability
🎯
Confidence
High
🏢
Affected
3 sector(s)
Actions
4 recommended
📰
Source
bleepingcomputer.com

Apple Patches Critical Bluetooth Flaw in Beats Studio Buds Allowing Unauthenticated Eavesdropping

What Happened — Apple released firmware update 1B211 for Beats Studio Buds to close CVE‑2025‑20701, a high‑severity Bluetooth vulnerability that let an unauthenticated attacker within range listen to the device’s microphone and, when chained with two related CVEs, issue commands to the paired phone.

Why It Matters for Compliance & Audit Readiness

  • The flaw bypasses logical‑access controls (SOC 2 CC6.1) and demonstrates why continuous evidence of device‑level security controls is essential.
  • Mapping this vulnerability to your control inventory provides audit‑ready proof that you monitor and remediate endpoint risks in real time.
  • Ongoing firmware‑validation processes satisfy SOC 2’s requirement for systematic change management and risk‑based monitoring.

Who Is Affected – Consumer‑electronics manufacturers, enterprises with BYOD programs, and any organization that permits Bluetooth audio accessories on corporate devices.

Recommended Actions – Deploy the Beats firmware update immediately; verify the version via Bluetooth settings; incorporate Bluetooth‑device inventory into your asset‑management controls; map the remediation to SOC 2 CC6.1 (Logical Access) and CC7.1 (System Operations) and capture update logs as audit evidence. Source: BleepingComputer

Technical Notes – The vulnerability stems from missing authentication in the Bluetooth BR/EDR radio of the Airoha SoC (CVE‑2025‑20701). When combined with CVE‑2025‑20700 and CVE‑2025‑20702, attackers can read/write RAM, extract link keys, retrieve call history, contacts, and place arbitrary calls. Source: same

📰 Original Source
https://www.bleepingcomputer.com/news/security/apple-fixes-beats-studio-buds-flaw-that-let-hackers-spy-on-conversations/

This LiveThreat Intelligence Brief is an independent analysis. Read the original reporting at the link above.

From the Verisq platform · Trust Operations

Misconfigurations are control gaps in disguise.

Verisq AI Trust Operations turns findings like this into mapped controls with continuous evidence, keeping your audit readiness current instead of point-in-time.

Map your controls with Verisq AI Trust Operations →