Apple has released security updates to patch a high-severity flaw affecting the Beats Studio Buds wireless earbuds that could allow attackers in Bluetooth range to spy on users' conversations.
"An attacker within Bluetooth range may be able to listen through the microphone of a device which is not yet paired and actively seeking pair requests," Apple explained in a Tuesday advisory.
"This is a vulnerability in open source code and Apple Software is among the affected projects. The CVE-ID was assigned by a third party."
Apple patched the vulnerability in Beats Firmware Update 1B211, which will be automatically delivered to vulnerable headphones when they are paired and within Bluetooth range of the user's iPhone, iPad, or Mac.
You can check whether the firmware has been applied from the Bluetooth settings on your device by tapping the info button next to the headphones.
