{"id":"CVE-2019-9836","details":"Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation.","modified":"2026-04-16T00:02:21.732730720Z","published":"2019-06-25T21:15:09.857Z","related":["SUSE-SU-2019:1792-1","SUSE-SU-2019:1802-1","SUSE-SU-2019:1803-1","openSUSE-SU-2019:1770-1","openSUSE-SU-2024:10894-1","openSUSE-SU-2025:14769-1","openSUSE-SU-2025:14770-1","openSUSE-SU-2025:14771-1","openSUSE-SU-2025:14772-1","openSUSE-SU-2025:14773-1","openSUSE-SU-2025:14774-1","openSUSE-SU-2025:14775-1","openSUSE-SU-2025:14776-1","openSUSE-SU-2025:14777-1","openSUSE-SU-2025:14778-1","openSUSE-SU-2025:14779-1","openSUSE-SU-2025:14780-1","openSUSE-SU-2025:14781-1","openSUSE-SU-2025:14782-1","openSUSE-SU-2025:14783-1","openSUSE-SU-2025:14784-1","openSUSE-SU-2025:14785-1","openSUSE-SU-2025:14786-1","openSUSE-SU-2025:14787-1","openSUSE-SU-2025:14788-1","openSUSE-SU-2025:14789-1","openSUSE-SU-2025:14790-1","openSUSE-SU-2025:14791-1","openSUSE-SU-2025:14792-1","openSUSE-SU-2025:14793-1","openSUSE-SU-2025:14794-1","openSUSE-SU-2025:14795-1","openSUSE-SU-2025:14796-1","openSUSE-SU-2025:14797-1","openSUSE-SU-2025:14798-1","openSUSE-SU-2025:14799-1","openSUSE-SU-2025:14800-1","openSUSE-SU-2025:14801-1","openSUSE-SU-2025:14804-1"],"references":[{"type":"ADVISORY","url":"https://www.amd.com/en/corporate/product-security"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00032.html"},{"type":"ADVISORY","url":"http://packetstormsecurity.com/files/153436/AMD-Secure-Encrypted-Virtualization-SEV-Key-Recovery.html"},{"type":"ADVISORY","url":"https://seclists.org/fulldisclosure/2019/Jun/46"},{"type":"ADVISORY","url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03943en_us"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"0.17b11"}]},{"events":[{"introduced":"0"},{"last_affected":"15.0"}]},{"events":[{"introduced":"0"},{"last_affected":"15.1"}]}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-9836.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}]}