On Ampere Altra and AltraMax devices before SRP 1.09, the Altra reference design of UEFI accesses allows insecure access to SPI-NOR by the OS/hypervisor component.Referenceshttps://amperecomputing.comhttps://amperecomputing.com/products/security-bulletins/altra-spi-nor-smc-protection-for-ampere-website.htmlhttps://amperecomputing.com/products/security-bulletins/altra-spi-nor-smc.html
