Intel has released on Monday a security advisory regarding a flaw in the Intel NUC BIOS. This flaw allows a user with local administrative right to access the system management mode (SMM) and take full control of the platform. All Skylake, Broadwell, Braswell NUCs are affected. In other words pretty much all NUCs from 2015 and 2016 are vulnerable to this.
The issue has been fixed in the BIOS versions that were released earlier in September. The following lists the first version that contains the fix for this issue.
- Skylake (i3 and i5): 0051
- Skull Canyon (i7): 0041
- Broadwell (i3, i5 and i7): 0359
- Braswell (Pentium and Celeron): 0056
Intel highly recommends updating the BIOS to a version listed above or newer. Check out Latest BIOS page for direct links to the latest BIOS versions.
We originally found out about this from fanlesstech.com.