Apple AirPlay: Security flaw leaves iPhones and other devices vulnerable to hackers
Cybersecurity experts have discovered worrying flaws that have left tens of millions of Apple product users vulnerable to hackers who could take over and “weaponise” their devices.
iPhone, Mac, iPad, and Apple TV devices are all believed to be at risk from bugs in the systems linked to Apple AirPlay, a feature that allows users to wirelessly play music, and show photos on other Apple devices.
These flaws, dubbed AirBorne, open the door to hackers who could take control of the device and deploy malware that then spreads to any local network the infected device connects to, according to Oligo Security Research.
Sign up to The Nightly's newsletters.
Get the first look at the digital newspaper, curated daily stories and breaking headlines delivered to your inbox.
By continuing you agree to our Terms and Privacy Policy.It claims to have discovered 23 vulnerabilities in Apple’s AirPlay protocol and the AirPlay software development kit, used by third-party vendors to integrate AirPlay into third-party devices.
“The attacks that they make possible are transmitted via wireless networks or peer–to-peer connections, and allow attackers to fully take over devices and use that access as a launchpad for further exploitation,” an Oligo statement on the issue read.
“Oligo has demonstrated that two of the vulnerabilities (CVE-2025-24252 and CVE-2025-24132) allow attackers to weaponise wormable zero-click RCE exploits.
“This could lead to the delivery of other sophisticated attacks related to espionage, ransomware, supply-chain attacks, and more.”
Oligo CTO Gal Elbaz told Wired: “Because AirPlay is supported in such a wide variety of devices, there are a lot that will take years to patch — or they will never be patched.
“And it’s all because of vulnerabilities in one piece of software that affects everything.”
Oligo reported the bugs to Apple, which issued software updates on March 31. However, third-party devices supporting AirPlay remain exposed to hacking unless they are updated, too.
Apple says the vulnerabilities require the attacker to be on the same wi-fi network as the affected third-party device, and the vast majority of such devices, such as speakers, have no meaningful access to private user date.
Oligo says there are a number of steps people can take to reduce the risk.
- If you are using a device with Apple AirPlay, update it to the latest software version.
- Disable the AirPlay function when not in use.
- Only use AirPlay on trusted devices
- Change the “Allow AirPlay for” to “Current User”. You can do this by going to Settings > AirPlay & Continuity (or AirPlay & Handoff) and select Current User for the “Allow AirPlay for” option.
