A vulnerability identified as critical has been detected in Apache Doris MCP Server up to 0.6.0 . This vulnerability affects unknown code. This manipulation causes sql injection. This vulnerability is handled as CVE-2025-66336 . The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.