From The Apple Wiki

The SEPROM is the first significant code that runs on the SEP and is read-only. Finding exploits at the SEPROM level is a big achievement, since Apple cannot fix it without a hardware revision.

However, due to the highly secure nature of the SEPROM, and the small attack surface of the SEPROM, only two vulnerabilities has been made public for it.