1 of 1 people found this helpful
There are two versions of the firmware. First, there is the "Consumer" version, which is used in most (non-VPro) systems. This is the smaller (1.5MB) firmware. The other version of the firmware is the "Client" version, which is used in VPro systems. VPro systems have the "Q" version of the chipset (Q77, Q87, etc.). Since it also includes the Intel Active Management (AMT) software stack, this version of the firmware is much larger (5MB).
The firmware that contained the vulnerabilities was the latter, "Client" version. Only those boards that contain this firmware required an update. The bulk of the systems, namely those with the "Consumer" firmware, are NOT affected by (i.e. do not contain) the vulnerabilities.
Hope this explains it clearly,