b2b-daily
Home | IT | Cyber Security

CISA Warns of Active Exploits Targeting Trimble Cityworks Software Flaw

Avatar photo
by Bairon McAdams
February 10, 2025
CISA Warns of Active Exploits Targeting Trimble Cityworks Software Flaw
Article Highlights
Off On

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding an actively exploited vulnerability in Trimble Cityworks, a GIS-centric asset management software. This vulnerability, identified as CVE-2025-0994, is a deserialization of untrusted data flaw that holds a CVSS v4 score of 8.6, allowing remote code execution by authenticated users on Microsoft’s IIS web server.

The vulnerability affects all versions of Cityworks prior to 15.8.9, as well as Cityworks with office companion versions before 23.10. In response to the identified risk, Trimble released patches aimed at fixing this vulnerability on January 29, 2025.

Despite these updates, CISA has reported continuous exploitation attempts targeting specific Cityworks deployments. Investigations reveal that these exploitation attempts involve a Rust-based loader deploying Cobalt Strike and a Go-based remote access tool named VShell, along with other unidentified payloads, thus emphasizing the critical nature of the problem.

CISA has added CVE-2025-0994 to its Known Exploited Vulnerabilities catalog, underscoring the necessity for Federal Civilian Executive Branch agencies to address and remediate this flaw by February 28, 2025. Users and administrators of the affected software versions are strongly urged to apply the necessary updates without delay. Additionally, they should actively search for indicators of compromise (IoCs) to ensure their systems are not already affected.

The advisory issued by CISA highlights the imperative of keeping software updated as a primary measure to mitigate the risks associated with known vulnerabilities. This is particularly crucial for those that are actively exploited in real-world attacks, like the one currently targeting Trimble Cityworks. Cybersecurity professionals and users must adopt a vigilant stance, prioritizing the application of patches and continuous monitoring for any signs of compromise. By doing so, they can effectively protect their systems and data from the ever-evolving landscape of cyber threats. As the situation evolves, staying informed and responsive remains essential for those aiming to maintain robust cybersecurity defenses.

Risk Management

Explore more

How Can Outbound Lead Gen Reduce B2B Acquisition Costs?
June 5, 2026

Business enterprises operating in the competitive B2B marketplace are currently facing a significant escalation in customer acquisition costs due to digital saturation and longer sales cycles. As organizations strive to maintain healthy profit margins, the efficiency of traditional inbound marketing has waned, leading to a renewed focus on outbound lead generation services. These professional services provide a direct and controlled

Nigeria Probes 1,369 Entities in Massive Data Privacy Crackdown
June 5, 2026

The sudden realization that sensitive biometric information and national identity numbers are being traded in clandestine digital marketplaces for less than the cost of a bottled soda has forced a dramatic reevaluation of Nigeria’s digital security protocols. As the nation accelerates its transition into a fully integrated digital economy, the Nigeria Data Protection Commission (NDPC) has identified a significant gap

ChatGPT Becomes Fastest App to Reach One Billion Users
June 5, 2026

The rapid ascension of conversational artificial intelligence into the daily routines of a global population has culminated in a historic achievement as ChatGPT officially surpassed the one billion user mark in record time. The milestone marks a significant pivot in how digital services scale, dwarfing the adoption rates of previous social media giants and productivity suites. This explosive growth stems

Ethereum Faces 2026 Market Correction and Bearish Sentiment
June 5, 2026

The current valuation of Ethereum has retreated significantly from its historical peaks, signaling a cooling phase that has caught many retail and institutional participants by surprise. As the asset hovers around the $1,646 threshold, the general sentiment within the digital finance community has shifted toward extreme caution, reflecting a broader retreat from high-volatility investments. This market correction serves as a

Why Is Private Cloud the Foundation for Production AI?
June 5, 2026

The sudden migration of artificial intelligence from experimental research labs to the very heart of mission-critical corporate operations has fundamentally altered the technological requirements for modern digital infrastructure. Enterprises that once treated cloud selection as a matter of simple convenience now recognize that the residence of sensitive workloads is a high-stakes strategic decision that impacts everything from data security to