达发的蓝牙芯片，被爆漏洞

Core Viewpoint - Multiple vulnerabilities have been discovered in Bluetooth SoC products from Airoha, a subsidiary of MediaTek, exposing various headphone and earbud vendors to potential exploitation [1][2]. Vulnerabilities Overview - The vulnerabilities are identified as CVE-2025-20700, CVE-2025-20701, and CVE-2025-20702, allowing attackers to gain complete control over headphones via Bluetooth without authentication or pairing [1][2]. - Attackers only need to be within Bluetooth range to exploit these vulnerabilities, potentially allowing them to manipulate RAM and flash memory of the devices [1]. Affected Devices - Numerous devices are at risk, including Bose QuietComfort earbuds, Marshall ACTION III, and Sony Link Buds S, with vulnerabilities present in both entry-level and flagship models [2]. - Confirmed vendors affected include Beyerdynamic, Marshall, and Sony, with indications that more devices using these chips are also vulnerable [2]. Remediation Efforts - Airoha has addressed the vulnerabilities in their SDK and released a new version, but individual vendors must build and distribute firmware updates to end-users [2]. - As of now, no fixed firmware versions have been identified [2].