**Name of the Vulnerable Software and Affected Versions:**

Qualcomm chipsets (affected versions not specified)

Meta Quest 3/3S versions August 7, 2025 and earlier

**Description:**

A memory corruption issue exists due to unauthorized command execution in the GPU micronode when processing a specific sequence of commands. This flaw has been actively exploited and affects multiple Qualcomm chipsets, including those found in the Meta Quest 3 and 3S devices. The vulnerability allows for potential memory corruption and unauthorized code execution. It is estimated that a large number of devices worldwide are affected. Exploitation of this issue has been observed in the wild, with reports indicating its use in attacks via the Adreno GPU. A proof-of-concept (PoC) exploit has been developed, enabling temporary root access on Meta Quest 3 and 3S devices.

**Recommendations:**

Qualcomm chipsets (affected versions not specified): At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Meta Quest 3/3S versions August 7, 2025 and earlier: Disable automatic updates and disconnect from Wi-Fi to prevent the installation of the patched firmware.