Apple released a firmware update for AirPods, which could allow attackers to gain unauthorized access to the headphones.
Tracked as CVE-2024-27867 , the authentication issue affects AirPods (2nd generation and later), AirPods Pro (all models), AirPods Max, Powerbeats Pro, and Beats Fit Pro.
“If your headphones are looking for a connection request from one of your previously paired devices, an attacker in Bluetooth range could spoof the intended source device and gain access to your headphones,” Apple said. said in an advisory on Tuesday.
In other words, an adversary in physical proximity could use the vulnerability to eavesdrop on private conversations. Apple said the issue was resolved through improved governance.
Jonas Dressler is credited with discovering and reporting the flaw. It was fixed as part of AirPods firmware update 6A326, AirPods firmware update 6F8, and Beats firmware update 6F8.
The development came two weeks after the iPhone manufacturer released updates for visionOS (version 1.2) to address 21 flaws, including seven flaws in the WebKit browser engine.
One of the issues concerns a logic bug (CVE-2024-27812) that could lead to a denial of service (DoS) when processing web content. The issue has been fixed through improved file handling, the report said.
Security researcher Ryan Pickren, who reported the vulnerability, described it as the “world’s first spatial computing hack” that could be used to “bypass all warnings and forcefully fill your room with an arbitrary number of animated 3D objects” without user interaction .
The vulnerability takes advantage of Apple’s failure to apply a permissions model when used ARKit Quick View feature create 3D objects in the victim’s room. What’s worse, these animated objects continue to persist even after you exit Safari, as they are handled by a separate application.
“What’s more, it doesn’t even require that anchor tag to be ‘clicked’ by a human,” Pickren said. “So programmatic JavaScript clicking (eg document.querySelector(‘a’).click()) works without a problem! This means we can run an arbitrary number of 3D, animated, sound-producing objects without any user interaction. “
