CVE 2021-26386
A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution.
See the
CVE page on Mitre.org
for more details.