Question / Problem:
What is the impact of the CVE-2020-1971 on Kofax RPA?
Answer / Solution:
If certificate verification is enabled (by default, it is not), robots will verify certificates during the handshake process. This vulnerability may impact such robots using SSL for Webkit robots and classic robots, not Chromium Embedded Framework (CEF) robots.
Migration to a newer version of OpenSSL is in progress for RPA v11.2 to resolve this issue. Once implemented, additional information will be documented in the Release Notes for v11.2. RPA documentation will be made available here after 11.2 is released:
For additional details about this vulnerability, please visit:
|RPA||10.3.0.2 and later|