Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Bluetooth bug turns popular headphones into eavesdropping devices
A newly disclosed set of Bluetooth vulnerabilities in Airoha audio devices could allow attackers to eavesdrop on users, hijack connections, and extract sensitive information — all without the victim's permission.
What is the Bluetooth headset vulnerability?
Security researchers at ERNW have disclosed vulnerabilities that highlight serious authentication issues in both the Bluetooth Classic and BLE (Bluetooth Low Energy) services used by the Airoha System-on-Chip (SoC). Affected devices include some of the most popular headphones and earbuds on the market, such as those from Sony, Bose, JBL, Jabra, Marshall, Beyerdynamic, and others.
While you may not have heard of Airoha, based on the list of headphone manufacturers above, you've definitely used the company's hardware built into many other products.
There are 3 main problems:
- CVE-2025-20700: Missing authentication for GATT Services
- CVE-2025-20701: Missing authentication for Bluetooth BR/EDR
- CVE-2025-20702: Custom Protocol Critical Capability
One of the bugs (CVE-2025-20702) has been rated as near critical (CVSS 9.6), making this a high priority issue for security-conscious manufacturers and users.
Combined, these vulnerabilities could allow an attacker to turn a Bluetooth headset into an eavesdropping device, effectively using the headset's onboard microphone as a recording device. One attack method allowed the researchers to redirect audio, allowing them to hear the listener's surroundings. A second attack exploited the relationship between paired Bluetooth devices, giving the paired device commands to make a secret call or extract data from the device.
Are your Bluetooth headphones at risk?
Now, here's why you shouldn't worry too much about this Bluetooth vulnerability: Exploits require an attacker to be physically close. Because of the way Bluetooth works—a short-range wireless connection—this is unlikely to be exploited at scale.
The ERNW report identifies the following types of headphones as vulnerable:
| Trademark | Product Name |
|---|---|
| Beyerdynamic | Amiron 300 |
| Bose | QuietComfort Earbuds |
| EarisMax | Bluetooth Auracast Sender |
| Jabra | Elite 8 Active |
| JBL | Endurance Race 2, Live Buds 3 |
| Jlab | Epic Air Sport ANC |
| Marshall | ACTON III, MAJOR V, MINOR IV, MOTIF II, STANMORE III, WOBURN III |
| MoerLabs | EchoBeatz |
| Sony | CH-720N, Link Buds S, ULT Wear, WF-1000XM3, WF-1000XM4, WF-1000XM5, WF-C500, WF-C510-GFP, WH-1000XM4, WH-1000XM5, WH-1000XM6, WH-CH520, WH-XB910N, WI-C100 |
| Teufel | Tatws2 |
But with the Airoha chipset powering millions of Bluetooth audio devices, there are potentially millions of vulnerable devices.
How to keep Bluetooth headphones safe
The biggest piece of security advice is to keep an eye out for any upcoming firmware updates for your Bluetooth headphones or earbuds. Airoha has released fixes for the vulnerabilities, but according to a June 25, 2025 ERNW report, 'we are not aware of any fixed firmware releases.'
Headset manufacturers may be preparing to release the fix along with other fixes as part of a regular patch program, but the fix is on the way.
Until manufacturers release confirmed patches, users of affected headsets should:
- Check for firmware updates using the official app
- Disconnect and discontinue use of affected models in sensitive environments.
- Always be aware of security recommendations from your headphone brand
While exploiting the vulnerability requires technical expertise and physical proximity, the discovery highlights the growing security implications of consumer electronics. With headphones now serving as gateways for digital assistants, calls, and music, a vulnerability like this could pose a serious privacy threat.
David PacYou should read it
- Why don't Beats headphones show up in the Bluetooth list and how to fix it
- The best Bluetooth headphones of 2023
- Top 10 cheap Bluetooth headsets 2023
- How to Use Wireless Headphones
- Bluetooth laptop error, cause and how to fix
- Bluetooth and Wireless Headphones Comparison? What's the Difference?
- Ptracker eavesdropping software comes from China
- Is Google Chrome eavesdropping on you?
May be interested
- Instructions for using Bluetooth on devices
bluetooth allows users to connect devices without using wires or cables. this is wireless technology, allowing devices like mobile phones, keyboards, mice, headsets and speakers to interact with each other over a short distance without the need for a cable. - How to charge Bluetooth headphones to extend battery lifethis article will guide you through 3 ways to quickly charge bluetooth headphones for: headphones without charger, headphones with charger, charging headphones with charging box,...
- What are Bluetooth headphones? Top 5 best Bluetooth headsetswhat is a bluetooth headset? a wireless headset capable of remotely connecting to commonly used electronic devices today. let's find out with tipsmake
- Choose to buy a Bluetooth headsetin addition to the convenience factor, the bluetooth headset is a confirmation of the owner. however, choosing a good headset is not always a simple task.
- How to Connect Bluetooth Headphones to Nintendo Switchtoday's tipsmake will show you how to connect wireless headphones to the nintendo switch gaming console. although the switch does not allow users to connect headphones directly, you can use wireless headphones that come with a usb dongle adapter that supports usb-c. if your headphones don't come with a dongle, you can use a bluetooth transmitter with built-in audio input.
- Bluetooth laptop error, cause and how to fixbluetooth is one of the important features on laptops that helps connect to other wireless devices such as phones or headphones. laptops often have errors with bluetooth, making many users confused about how to handle it. if you encounter this situation, please refer to tipsmake's guide on how to fix bluetooth errors on laptops.
- Fix bluetooth headset can't hear on one sidethe situation of only being able to hear on one side of the bluetooth headset makes the user feel uncomfortable and also affects your hearing if left for a long time.
- 5 best Bluetooth headphones of 2024with so many choices out there, it's hard to know where to start. if you're looking for some of the best bluetooth headphones, here are 5 of the best available to buy.
- What is Bluetooth? Useful information about Bluetooth technologymany devices today incorporate bluetooth technology to enable wireless communication with other bluetooth devices. before using bluetooth, it is important to understand what this technology is and the security risks that may come with it, as well as how to avoid or protect yourself from these risks.
- Top 14 best wireless headphones 2018wireless earbud headsets, also known as in-ear headphones are becoming increasingly popular. the fact that manufacturers are gradually eliminating headphone jacks on phones also plays an important role in its popularity.
Attack the network
- 2.7 Billion Personal Data Records Exposed in Massive Data Breach
- New FrigidStealer Malware Spreads Through Fake Browser Updates on Macs
- Warning: 1Password users receive fake master password reset emails
- Why is Infostealer malware the biggest new malware concern?
- Security flaw discovered in Bluetooth chip used by a billion devices worldwide
- Understanding Clickjacking: The Browser-Based Attack That Can Bypass Protections to Take Over Accounts
2.7 Billion Personal Data Records Exposed in Massive Data Breach
New FrigidStealer Malware Spreads Through Fake Browser Updates on Macs
Warning: 1Password users receive fake master password reset emails
Why is Infostealer malware the biggest new malware concern?
Security flaw discovered in Bluetooth chip used by a billion devices worldwide
Understanding Clickjacking: The Browser-Based Attack That Can Bypass Protections to Take Over Accounts