CVE-2021-28216

Summary

BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.

Affected Software

VendorProductVersion RangeStatus
TianoCoreEDK IIEDK II Masteraffected

Weaknesses

  • CWE-587: A case of CWE-587 occurs in function FpdtStatusCodeListenerPei().

ADP Enrichment

CVE Program Container

Additional References

References