Skip to main content

Apache Doris CVE-2026-58319

| EUVDEUVD-2026-43653 CRITICAL
Missing Authentication for Critical Function (CWE-306)
9.1
CVSS 3.1 · NVD
Share

Severity by source

Vendor (CNA) PRIMARY
CRITICAL
qualitative
NVD
9.1 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
vuln.today AI
9.1 CRITICAL

Unauthenticated network REST access to admin functions gives AV:N/AC:L/PR:N/UI:N; impact is integrity and availability (I:H/A:H) with no data disclosure (C:N).

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (CNA).

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
High

Lifecycle Timeline

6
Analysis Updated
Jul 14, 2026 - 16:28 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Jul 14, 2026 - 16:22 vuln.today
cvss_changed
CVSS changed
Jul 14, 2026 - 16:22 NVD
9.1 (CRITICAL)
Patch available
Jul 14, 2026 - 11:17 EUVD
Analysis Generated
Jul 14, 2026 - 02:16 vuln.today
CVE Published
Jul 14, 2026 - 02:08 oss-security
CRITICAL

Description PRE-NVD

Disclosed via oss-security. NVD scoring and full description are pending.

AnalysisAI

Missing authentication on Apache Doris Frontend (FE) HTTP REST administrative APIs allows any unauthenticated attacker with network reach to the FE HTTP service to invoke privileged administrative operations, degrading cluster integrity and availability up to full denial of service. All Apache Doris releases before 3.1.0 (per EUVD, the 2.1.0 through pre-3.1.0 line) are affected, and a fixed release exists in 3.1.0. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach FE HTTP service over network
Delivery
Send unauthenticated request to admin REST endpoint
Exploit
Invoke privileged cluster operation
Execution
Disrupt cluster integrity and availability
Impact
Denial of service

Vulnerability AssessmentAI

Exploitation The concrete prerequisite is network reachability to the Apache Doris FE HTTP (REST) service on a version prior to 3.1.0; the vulnerable administrative REST endpoints served requests with no authentication, so no credentials, tokens, or user interaction are needed. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H, 9.1 Critical) is internally consistent with the description: remote, low-complexity, no privileges, no user interaction, with high integrity and availability impact and explicitly no confidentiality impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who can reach the Doris FE HTTP service - for example an FE node exposed to the internet or reachable from a compromised host on the same network - sends crafted HTTP requests directly to the unauthenticated administrative REST endpoints. Because no credentials are required (AV:N/AC:L/PR:N), the attacker invokes privileged cluster operations that disrupt integrity and availability, driving the cluster into instability or denial of service. …
Remediation Vendor-released patch: upgrade to Apache Doris 3.1.0 or later, which is the fixed release identified by the vendor and confirmed as patch-available in the intelligence data. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours, inventory all systems running Apache Doris versions 2.1.0 through pre-3.1.0 to identify affected infrastructure and assess network exposure of the HTTP REST administrative APIs. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-58319 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy