A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.

Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks.