Apple released a firmware update this week to fix a critical Bluetooth eavesdropping vulnerability affecting Beats Studio Buds [1].

The security patch addresses a flaw that could allow unauthorized devices to impersonate earbuds. This vulnerability potentially enabled nearby attackers to listen to private conversations while the devices were pairing [1, 2, 3].

The vulnerability is identified as CVE-2025-20701 [4]. According to security reports, the flaw was classified as high-severity because it compromised the privacy of the user's audio stream [4, 5]. The flaw allowed an attacker in close proximity to the hardware to intercept the connection process, creating a risk of targeted surveillance.

Apple deployed the fix globally via an over-the-air firmware update [1, 4]. Users can resolve the security risk by updating their device to firmware version 1B211 [6]. This version closes the pairing loophole, and prevents the impersonation of the earbuds by third-party devices [6].

Security researchers said that the vulnerability occurred during the handshake process between the earbuds and the connected device. By spoofing the identity of the hardware, an attacker could essentially "hijack" the microphone input [1, 3].

Apple has not provided specific details on whether this vulnerability was exploited in the wild before the patch was released in June 2026 [4]. The company said all Beats Studio Buds owners should verify their firmware version through the associated mobile app to ensure the 1B211 update is active [6].

The security patch addresses a flaw that could allow unauthorized devices to impersonate earbuds.

This incident highlights the inherent security risks in the Bluetooth pairing process, where trust is established between two devices. Because the flaw allowed for device impersonation, it underscores the necessity of encrypted and authenticated handshakes in wearable tech to prevent localized 'man-in-the-middle' attacks on personal audio.