CVE-2013-5912

EXPLOITED

Thomson Reuters Velocity Analytics Vhayu Analytic Server 6.94 - Remote Code Execution via VhttpdMgr

Title source: llm

Exploitation Summary

CVE-2013-5912 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Eduardo Gonzalez.

AI-analyzed exploit summary This exploit leverages a file upload vulnerability in Thomson Reuters Velocity Analytics to execute arbitrary code with SYSTEM privileges. The attacker can upload a backdoor by manipulating the 'fileName' parameter in the 'importFile' action.

Description

VhttpdMgr in Thomson Reuters Velocity Analytics Vhayu Analytic Server 6.94 build 2995 allows remote attackers to execute arbitrary code via a URL in the fileName parameter during an importFile action.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Eduardo Gonzalez · textremotehardware

https://www.exploit-db.com/exploits/38850

View Code ZIP pw:eip

This exploit leverages a file upload vulnerability in Thomson Reuters Velocity Analytics to execute arbitrary code with SYSTEM privileges. The attacker can upload a backdoor by manipulating the 'fileName' parameter in the 'importFile' action.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Thomson Reuters Velocity Analytics 6.94 build 2995

No auth needed

Prerequisites: Network access to the target application

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/893462

Scores

EPSS 0.3462

EPSS Percentile 97.1%

Details

VulnCheck KEV 2019-12-13

CWE

CWE-94

Status published

Products (1)

thomsonreuters/velocity_analytics_vhayu_analytic_server 6.94

Published Nov 28, 2013

Tracked Since Feb 18, 2026