Medium severity4.3NVD Advisory· Published Jun 26, 2024· Updated Jun 17, 2026
CVE-2024-27867
CVE-2024-27867
Description
An authentication issue was addressed with improved state management. This issue is fixed in AirPods Firmware Update 6A326, AirPods Firmware Update 6F8, and Beats Firmware Update 6F8. When your headphones are seeking a connection request to one of your previously paired devices, an attacker in Bluetooth range might be able to spoof the intended source device and gain access to your headphones.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:o:apple:airpods_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:airpods_firmware:*:*:*:*:*:*:*:*range: <6a326
- (no CPE)range: 6A326, 6F8
Patches
Vulnerability mechanics
References
4- support.apple.com/en-us/HT214111nvdVendor Advisory
- support.apple.com/kb/HT214111nvdVendor Advisory
- seclists.org/fulldisclosure/2024/Jul/2nvdMailing List
- support.apple.com/en-us/120907nvd
News mentions
0No linked articles in our index yet.