New Vulnerabilities in Bluetooth Headphones Let Hackers Hijack Connected Smartphone

Security researchers disclosed multiple critical Airoha Bluetooth SoC vulnerabilities (CVE-2025-20700/20701/20702) that expose a factory RACE protocol over BLE, Bluetooth Classic, and USB, allowing unauthenticated access, arbitrary read/write, and RCE; a publicly released RACE Toolkit and PoC chaining these flaws can extract pairing Link Keys to impersonate headphones and fully compromise connected smartphones, enabling eavesdropping and account takeover across many popular headphone models.