Vulnerabilities > CVE-2021-38576 - Unspecified vulnerability in Tianocore Edk2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 12 |