SSL Component vulnerability - Photoshop

Question

Some months ago Adobe Acrobat and other adobe products had a problem with open ssl security vulnerabilities associated with DLL files.

Adobe Acrobat was patched but months later products like Adobe Photoshop still seem to be using the same version.

c:\program files\adobe\adobe photoshop 2025\libssl-3-x64.dll	openssl	openssl	3.0.14.0
c:\program files\adobe\adobe photoshop 2025\libcrypto-3-x64.dll	openssl	openssl	3.0.14.0

I have reached out directly to Adobe regarding this, but they closed my case without responding.

Anyone else have this on their radar?

ExUSA · Answer

Don't assume that embedded versions of a library have the same vulnerabilities as the full version. Often, its used in a way that cannot be exploited.

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded