The Apache Pinot MCP server is affected by a critical authentication bypass vulnerability that grants unauthenticated attackers full administrative control over the cluster.

The software defaults to binding an HTTP MCP server to 0.0.0.0:8080 without requiring authentication. This creates a confused-deputy condition where an unauthenticated, network-adjacent attacker can perform unauthorized SQL queries, schema modifications, and table-config mutations using the server’s elevated privileges.

With a CVSS score of 10.0, this vulnerability represents the highest level of risk to the confidentiality, integrity, and availability of data stored in the Pinot cluster. An attacker can manipulate data, delete tables, or exfiltrate sensitive business information, potentially leading to total loss of trust in the platform and significant operational disruption.

Immediate Action: Upgrade to Apache Pinot version 3.1.0 or higher, which enforces secure authentication defaults.

Proactive Monitoring: Audit access logs for any unauthorized connections to port 8080 and monitor for suspicious SQL query patterns or unexpected configuration changes.

Compensating Controls: Immediately restrict access to the affected service by implementing network-level access control lists (ACLs) or firewalls to block external access to port 8080.

Public Exploit Available: False

The severity of this issue cannot be overstated. Immediate transition to version 3.1.0 is mandatory. If an immediate upgrade is not feasible, the service must be taken offline or firewalled from all untrusted network segments to prevent unauthorized access.