VYPR
Unrated severityOSV Advisory· Published Jan 3, 2022· Updated Nov 3, 2025

CVE-2021-38576

CVE-2021-38576

Description

A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.

Affected products

1
  • Range: edk2-stable201808, edk2-stable201811, edk2-stable201903, …

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.