Doris Mcp Server

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-58337 PyPI MEDIUM PATCH This Month

An attacker with a valid read-only account can bypass Doris MCP Server’s read-only mode due to improper access control, allowing modifications that should have been prevented by read-only. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Doris Mcp Server

NVD

CVSS 3.1

5.4

EPSS

0.1%

CVE-2025-58337 PyPI

EPSS 0% CVSS 5.4

MEDIUM PATCH This Month

An attacker with a valid read-only account can bypass Doris MCP Server’s read-only mode due to improper access control, allowing modifications that should have been prevented by read-only. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Doris Mcp Server

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy