CVE-2025-20702

Name of the Vulnerable Software and Affected Versions Airoha Bluetooth audio SDK (affected versions not specified)

Description The Airoha Bluetooth audio SDK contains a flaw involving unauthorized access to the RACE protocol. This access could allow for remote escalation of privilege without requiring additional execution privileges, and does not require user interaction for exploitation. Reports indicate that devices utilizing Airoha chips may be susceptible to unauthorized access and eavesdropping due to a lack of authentication.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.