cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Exit
search
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
  • 한국 커뮤니티
3
Upvote

CVE-2024-12797 - Vulnerability of OpenSSL libraries

volk7
New Here ,
May 16, 2025 May 16, 2025

Hello, good day. I am a vulnerability analyst and recently an alert has come out regarding CVE-2024-12797, where your application is exposed through the OpenSSL versions of your “libcrypto-3-x64.dll” and “libssl-3-x64.dll” files using OpenSSL version 3.2.1.0. I would be grateful if you could let me know an estimated date, when it will be possible to upgrade to OpenSSL version 3.2.4.0 in the mentioned libraries. These detections occur through the plugin “mochaae” that is integrated with After Effects, in a path as “adobe media encoder 2025 ”aftereffectslib", which is triggering the exposure of the Adobe Media Encoder (25.2) and Adobe Premier Pro (25.2.3) applications.

TOPICS
Error or problem
511
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines

correct answers 1 Pinned Reply

Kevin-Monahan Adobe Employee
Adobe Employee , May 16, 2025 May 16, 2025

HI @volk7,

Thanks for the message. I let the developers know about this issue. I hope they will reply shortly.

 

Thanks,
Kevin

 

Translate
replies 2 Replies 2
latest latest Jump to latest reply
Kevin-Monahan Adobe Employee
Adobe Employee ,
May 16, 2025 May 16, 2025

HI @volk7,

Thanks for the message. I let the developers know about this issue. I hope they will reply shortly.

 

Thanks,
Kevin

 

Kevin Monahan - Sr. Community & Engagement Strategist – Pro Video and Audio
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Kovac_NZ
Community Beginner ,
Jul 24, 2025 Jul 24, 2025
LATEST
In Response To Kevin-Monahan

Are the OpenSSL component vulnerabilities still an issue in some Adobe Products?

 

Adobe Acrobat appears to have been updated but I'm still getting alerted for some products like After Effects, Photoshop, Premiere etc

c:\program files\adobe\adobe photoshop 2025\libssl-3-x64.dll
c:\program files\adobe\adobe photoshop 2025\libcrypto-3-x64.dll

 

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
Troubleshooting FAQs
Fix common After Effects crashes
Open in a new window
How to fix "Display Acceleration Disabled"
Open in a new window
Fix dynamic link between After Effects and AME
Open in a new window
Building the best After Effects computer
Open in a new window
Why isn't After Effects preview real-time?
Open in a new window
After Effects Community Recap
After Effects Community Recap 2022: Year-in-review
Open in a new window
October 2022 Community Recap
Open in a new window
After Effects Community Recap home page
Open in a new window
Getting started with After Effects
How to download & install After Effects
Open in a new window
After Effects system requirements
Open in a new window
Inspiring tutorials
Open in a new window
After Effects user guide
Open in a new window
Copyright © 2025 Adobe. All rights reserved.
Using the Community Experience League Terms of Use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices