Nodejs node.exe vulnerable in Photoshop 2023

Report · Jan 27, 2023

Endpoint protection systems reporting node.exe in PS2023 as vulnerable (EOS). Please advise how to update. Thank you.

Report · Jan 27, 2023

This post has a suggested work around:

https://community.adobe.com/t5/download-install-discussions/vulnerability-in-node-exe-in-adobe-photo...

Report · Jan 27, 2023

There may not be any vulnerabilities, depending on how Adobe used the node framework and their customizations. Components are updated as part of the regular application update process.

Report · Feb 01, 2023

I see the work around dates back 1.5 years. Even then no one stated whether this worked or was an approved workaround. An article from around the same time period stated that they were able to use node.exe to execute code. I came here looking for answers to OP's questions as well since I would hope Adobe keeps their products up-to-date and patched.

Report · Feb 01, 2023

https://www.adobe.com/trust/security.html

You could always drop a line to their security team for assistance.

Report · Feb 01, 2023

Thanks for the link. Will do.

Report · Feb 02, 2023

Thanks for all the replies. I ended up renaming the current node.exe and replacing with the latest from nodejs.org. I sure hope nothing breaks.

Report · Feb 02, 2023

https://helpx.adobe.com/security/alertus.html

Report · Feb 03, 2023

Can you report back in week on how that went 'set7914309laxf'? Did you notice anything breaking in PhotoShop or anything else weird?

Adobe Community

Nodejs node.exe vulnerable in Photoshop 2023

Explore related tutorials & articles