Apache Doris MCP Server: MCP SQL inject_CVE-2025-66335

5.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Description

Apache Doris MCP Server versions earlier than 0.6.1 are affected by an improper neutralization flaw in query context handling that may allow execution of unintended SQL statements and bypass of intended query validation and access restrictions through the MCP query execution interface. Version 0.6.1 and later are not affected.

Basic Information

ID CVE-2025-66335

Source apache

Published Apr 20, 2026 at 13:27

Modified Apr 20, 2026 at 14:17

Affected Product

Vendor Apache Software Foundation

Product Apache Doris MCP Server

Version 0.1.0

Affected Versions Apache Software Foundation Apache Doris MCP Server 0.1.0

CWE Classification

CWE-89

References

lists.apache.org /thread/odp0fyyst8kxm7hhm9z4d1snh1y4hjpy

{
    "lastseen": "",
    "description": "Apache Doris MCP Server versions earlier than 0.6.1 are affected by an improper neutralization flaw in query context handling that may allow execution of unintended SQL statements and bypass of intended query validation and access restrictions through the MCP query execution interface. Version 0.6.1 and later are not affected.",
    "published": "2026-04-20T13:27:27.764Z",
    "modified": "2026-04-20T14:17:11.395Z",
    "type": "cve",
    "title": "Apache Doris MCP Server: MCP SQL inject",
    "source": "apache",
    "references": "https://lists.apache.org/thread/odp0fyyst8kxm7hhm9z4d1snh1y4hjpy",
    "id": "CVE-2025-66335",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "Apache Software Foundation Apache Doris MCP Server 0.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Apache Doris MCP Server",
    "version": "0.1.0",
    "vendor": "Apache Software Foundation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}