THREATOPS
THREAT OPSThreat News › Samsung Galaxy Buds – Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption (Vendor Response: Working as Intended)

Samsung Galaxy Buds – Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption (Vendor Response: Working as Intended)

lowfulldisclosurePublished 2026-07-02

<p>Posted by 490h3fqwomf via Fulldisclosure on Jul 02</p>Hello Full Disclosure,<br /> <br /> The following publicly available research describes a Bluetooth attack against Samsung Galaxy Buds that leverages <br /> connection arbitration behavior between HFP and A2DP profiles to preempt an active audio session.<br /> <br /> Title:<br /> <br /> Zero-Click HFP/A2DP Takeover via L2CAP Session Preempti

Original source: https://seclists.org/fulldisclosure/2026/Jul/5