Server-Side Request Forgery (SSRF)
A vulnerability was found in AWS SDK versions prior to 2.59.1. It has been rated as critical. This issue affects the function "XpathUtils" of the file "aws-android-sdk-core/src/main/java/com/amazonaws/util/XpathUtils.java" of the component XML Parser. The manipulation leads to server-side request forgery. It is recommended to upgrade the affected component. The identifier VDB-216737 was assigned to this vulnerability.
CWE-918 - Server-Side Request Forgery (SSRF)
Server-side request forgery (SSRF) is a weakness that allows an attacker to send an arbitrary request, making it appear that the request was sent by the server. This request may bypass a firewall that would normally prevent direct access to the URL. The impact of this vulnerability can vary from unauthorized access to files and sensitive information to remote code execution.