This is not CVE-2025-3052. If you follow the link from the the NVD vulnerability page linked by @tommi_virtanen above to the vulnerability report at cert.org, it says the following:
UEFI firmware applications
DTBiosandBiosFlashShellfrom DTResearch contain a vulnerability that allows Secure Boot to be bypassed using a specially crafted NVRAM variable.
cert.org
Neither DTBios nor BiosFlashShell are the UEFI shell implicated in Eclipsium’s article.
It goes on to say,
The vulnerability stems from improper handling of a runtime NVRAM variable that enables an arbitrary write primitive
ibid.
The mm command documented in Eclipsium’s report is not “improper handling of a runtime NVRAM variable.”
It is possible a CVE has not yet been issued for this vulnerability. Perhaps no CNA has been involved.
The release notes you are assessing as being insufficiently transparent or accurate state:
Added Framework’s dbx key
3.24 release thread
This tracks with Eclipsium’s table indicating that a DBX update was targeted for release in 1.24.
QED