Security researchers at German cybersecurity firm ERNW disclosed three serious vulnerabilities in Airoha chipsets, confirming that 29 audio devices from 10 brands — including Bose, Sony, JBL, Jabra, Marshall, Beyerdynamic, JLab, EarisMax, MoerLabs, and Teufel — are affected. These include wireless headphones, earbuds, microphones, and speakers.
The flaws, identified as CVE-2025-20700, CVE-2025-20701, and CVE-2025-20702, stem from missing authentication in Bluetooth protocols and weaknesses in a proprietary control mechanism.
Do OEM pages even have spec sheets for these products for consumer end websites for us to check for this chipset? How do I know if my headset got affected? I have a Bose QC45 headphone
“Airoha, ERNW says, has addressed the vulnerabilities in the latest version of its SDK, which was supplied to its customers. To date, the security firm is not aware of any vendor releasing firmware updates to address the bugs.”
I don’t even know if any headphone/earphone OEMs push updates OTA. Can we do this manually?
I believe some headphones, such as the JBL, support firmware updates through their JBL app. When I paired my headphones & TWS with the app, that was the first thing that happened.