AI description
CVE-2025-20701 is an authorization bypass vulnerability found within the Airoha Bluetooth audio SDK. This flaw enables an attacker to pair Bluetooth audio devices without requiring user consent or interaction. The vulnerability can lead to remote privilege escalation, as it does not necessitate any additional execution privileges for exploitation. The vulnerability affects devices that utilize the Airoha Bluetooth audio stack, including specific Airoha AB156x, AB157x, AB158x, and AB159x series devices running certain versions of the Airoha IoT SDK for BT audio, as well as Airoha AB1561x/AB1562x/AB1563x SDK. This includes various Bluetooth audio peripherals such as Beats Studio Buds and other popular headphone models from manufacturers like Sony, Bose, JBL, Marshall, and Jabra. Exploitation requires the attacker to be within Bluetooth radio range of the target device.
- Description
- In the Airoha Bluetooth audio SDK, there is a possible way to pair Bluetooth audio device without user consent. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- Source
- security@mediatek.com
- NVD status
- Deferred
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- security@mediatek.com
- CWE-863
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
12
Apple patches Beats Studio Buds vulnerability (CVE-2025-20701) that allows nearby hackers to eavesdrop. Also: new iPhone BootROM exploit discovered. https://t.co/yDf1srcKhw #BeatsStudioBuds #CVE #BluetoothVulnerability #Eavesdropping #Airoha #iPhone #BootROM #AppleSecurity http
@redsecuretech
19 Jun 2026
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple Patches Critical Beats Studio Buds Flaw Apple has fixed a high-severity Bluetooth vulnerability (CVE-2025-20701) that could reportedly allow nearby attackers to access device microphones without user consent. Users are advised to install the latest firmware update to stay
@CyberNexoraNews
19 Jun 2026
2 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
AppleはBeats Studio Buds向けファームウェア更新を公開し、近距離の攻撃者による盗聴につながる高危険度脆弱性を修正した。対象となるのはCVE-2025-20701で、CVSSスコアは8.8。修正はBeats Firmware Update 1B211で提供されて
@yousukezan
19 Jun 2026
603 Impressions
1 Retweet
0 Likes
2 Bookmarks
0 Replies
0 Quotes
📢Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone. The vulnerability, tracked as CVE-2025-20701 (CVSS score: 8.8), refers to a case of incorrect authorization impacting the Airoha Bluetooth audio SDK that makes it possible to pair a Bluetooth h
@BreachBrief
19 Jun 2026
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Apple fixed a Beats Studio Buds bug (CVE-2025-20701) that could let a nearby attacker listen through the microphone when the device was not yet paired and seeking pair requests. Update to firmware 1B211. Read the full story: https://t.co/UHsZ0fyHgr
@TheHackersNews
19 Jun 2026
6102 Impressions
14 Retweets
40 Likes
5 Bookmarks
0 Replies
2 Quotes
#Apple a corrigé une faille critique dans les #Beats Studio Buds permettant à un hacker proche d’espionner via le micro (CVE-2025-20701, score 8.8). Sécurité renforcée ! 🎧🔒 #CyberSecurity #calimeg https://t.co/GVOouJ3g8u
@meg_ai_fr
19 Jun 2026
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple's latest firmware update for Beats Studio Buds addresses a critical Bluetooth vulnerability (CVE-2025-20701) that allowed nearby attackers to eavesdrop via the device's microphone. Users should update to Firmware 1B211 to secure their devices. #Apple #BeatsStudioBuds https
@dailytechonx
19 Jun 2026
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
‼️Apple has patched a high-severity vulnerability in Beats Studio Buds that could have allowed attackers within Bluetooth range to secretly eavesdrop through the earbuds’ microphone. Tracked as CVE-2025-20701, the flaw affected devices actively seeking pairing requests.
@CyberXlx9q
19 Jun 2026
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Attackers exploited CVE-2025-20701 to pair with Beats Studio Buds without consent, then escalated to extract Bluetooth link keys for device impersonation. The vulnerability allowed lateral movement between paired devices and exfiltration of call history and contacts.
@aviatrixtrc
19 Jun 2026
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 Apple patches high-severity eavesdropping flaw in Beats Studio Buds Apple released Beats Firmware Update 1B211 to fix CVE-2025-20701, a vulnerability (severity 8.8/10) that allowed attackers within Bluetooth range to impersonate paired devices and eavesdrop through the http
@NewsTongueX
18 Jun 2026
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple fixed a high-severity Bluetooth flaw in Beats Studio Buds with firmware 1B211. CVE-2025-20701 could let nearby attackers eavesdrop on conversations through the mic. #BeatsBuds #Airoha #ERNW https://t.co/L2sOxXuI49
@TweetThreatNews
18 Jun 2026
92 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ATK-maailmassa on levinnyt tieto uudesta Bluetooth laitteisiin liittyvästä tietoturvallisuushaavoittuvuudesta (tunnisteet: CVE-2025-20700, CVE-2025-20701 ja CVE-2025-20702). Kyseiset haavoittuvuudet koskevat kuluttajatuotteita, jotka käyttävät yhtä tiettyä Bluetooth modu
@valco_fi
6 Jan 2026
107 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
Dear @Bose when do you plan to fix: CVE-2025-20700: No authentication on BLE CVE-2025-20701: No authentication on BT Classic CVE-2025-20702: Debug protocol exposed that should never be accessible which make the Airoha chipset on your QC Buds an open door to my phone?
@gravax
3 Jan 2026
89 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
those bluetooth earbuds, speakers, etc. 👀 CVE-2025-20700 / CVE-2025-20701 / CVE-2025-20702 https://t.co/XNMwcpt9Ep
@gringo_ctm
2 Jan 2026
78 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
⚠️ Vulnerabilidades en chipsets Bluetooth ❗ CVE-2025-20700 ❗ CVE-2025-20701 ❗ CVE-2025-20702 ➡️ Más info: https://t.co/0znjTzVrM4 https://t.co/6FsC7RUzch
@CERTpy
2 Jan 2026
126 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
Bluetooth Headphone Jacking: Full Disclosure of Airoha RACE Vulnerabilities This blog post is about CVE-2025-20700, CVE-2025-20701, and CVE-2025-20702 vulnerabilities technical details in Airoha-based Bluetooth headphones and earbuds. https://t.co/HGPppeXr94 pdf: https://t.co/11U
@blackorbird
30 Dec 2025
3731 Impressions
11 Retweets
45 Likes
26 Bookmarks
0 Replies
0 Quotes
Hey @Bose/@BoseService fix the BT CVE on your headphones CVE-2025-20700, CVE-2025-20701, CVE-2025-20702 https://t.co/PGt3aboa11 https://t.co/nAGqHybae3
@AphixJS
27 Dec 2025
66 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Bluetoothの脆弱性により、マイク通じた盗聴が可能になる恐れ(CVE-2025-20700、CVE-2025-20701、CVE-2025-20702) https://t.co/5917jBlcSB これ関連のアップデートかな? やっぱり……対象だった😳 https://t.co/MEog2LU6yN
@miuutahosi
11 Dec 2025
189 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
1 Quote
CVE-2025-20701 (CVSS:8.8, HIGH) is Awaiting Analysis. In the Airoha Bluetooth audio SDK, there is a possible way to pair Bluetooth audio device without user consent. This cou..https://t.co/I9DUaggqrv #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
9 Aug 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-20701 Bluetooth Pairing Privilege Escalation in Airoha Audio SDK Without User Consent https://t.co/eFKRcGlv0q
@VulmonFeeds
4 Aug 2025
85 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-20701 In the Airoha Bluetooth audio SDK, there is a possible way to pair Bluetooth audio device without user consent. This could lead to remote escalation of privilege with… https://t.co/ywbWyA2fJm
@CVEnew
4 Aug 2025
624 Impressions
1 Retweet
0 Likes
1 Bookmark
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/qL62ywHJsz
@D_Hackz
10 Jul 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/JKhJg4ulgq
@cybersecur80472
10 Jul 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/Xb9I8owMVz
@nathy_hackers
10 Jul 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/PcNYy00YiW
@NumeroUnoHacker
9 Jul 2025
129 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/LC1mOxWP5k
@cyberuncrack
9 Jul 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/OBjqEbHBbZ
@cyberecstasy01
9 Jul 2025
77 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/7urKK8D28s
@hackersguru01
8 Jul 2025
84 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetooth gap turns headphones into listening stations CVE-2025-20700: Missing Authentication for GATT Services CVE-2025-20701: Missing Authentication for Bluetooth BR/EDR CVE-2025-20702: Critical Capabilities of a Custom Protocol #hacks #China #f1jp https://t.co/qbNGFBYhFb
@infiltr08
6 Jul 2025
195 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-20700 CVE-2025-20701 CVE-2025-20702 https://t.co/UzVVbS5oZ1
@huseyin_y52727
2 Jul 2025
11 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Bluetoothの脆弱性により、マイク通じた盗聴が可能になる恐れ(CVE-2025-20700、CVE-2025-20701、CVE-2025-20702) | Codebook|Security News https://t.co/C6Mla6RKhs
@Luke06121
30 Jun 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Just opened a support ticket with @Sennheiser to check if my Sennheiser IE 100 Pro Wireless are affected by the zero day vulnerabilities CVE-2025-20702, CVE-2025-20700, CVE-2025-20701. Amazed to see: if they answer, when they answer and if it's affected.
@mountainman1977
29 Jun 2025
48 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes