With tens of millions of third-party AirPlay devices and CarPlay systems in use, the potential impact of these vulnerabilities is substantial.

A recent report published on April 28, 2025, by cybersecurity firm Oligo highlights significant vulnerabilities in Apple's AirPlay protocol, which could allow remote device hijacking without user interaction.

Oligo identified 23 vulnerabilities within the AirPlay protocol and its SDK, with 17 receiving official CVE designations, including notable ones like CVE-2025-24252 and CVE-2025-24132, enabling zero-click remote code execution.

The vulnerabilities are part of an exploit chain named 'AirBorne', which can create wormable exploits that propagate automatically across devices on the same network.

To enhance security, users are advised to keep their devices updated and use strong, unique passwords, while also restricting AirPlay access to their accounts.

Although Apple has released patches for its devices, many third-party products remain vulnerable due to slow update cycles from manufacturers.

Oligo estimates that a wide range of devices, including speakers and TVs, could still be exposed, as some manufacturers may never provide security updates.

To exploit these vulnerabilities, attackers must first gain access to the same Wi-Fi network as the target device, a scenario that is particularly concerning in public networks.

Public Wi-Fi hotspots, such as those in coffee shops and airports, pose increased risks for exploitation, as attackers could directly access AirPlay devices.

The findings underscore the risks associated with third-party integration of Apple technologies and the ongoing challenges of maintaining security across diverse devices.

Connected accessories, particularly those using the AirPlay protocol, require vigilance from both consumers and enterprises to mitigate security risks.

As of now, Apple has not publicly commented on Oligo's findings regarding these vulnerabilities.