b2b-daily
Search
Close this search box.
Search
Close this search box.
Home | IT | Cyber Security

CISA Warns of Active Exploits Targeting Trimble Cityworks Software Flaw

Avatar photo
by Bairon McAdams
February 10, 2025
CISA Warns of Active Exploits Targeting Trimble Cityworks Software Flaw
Article Highlights
Off On

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding an actively exploited vulnerability in Trimble Cityworks, a GIS-centric asset management software. This vulnerability, identified as CVE-2025-0994, is a deserialization of untrusted data flaw that holds a CVSS v4 score of 8.6, allowing remote code execution by authenticated users on Microsoft’s IIS web server.

The vulnerability affects all versions of Cityworks prior to 15.8.9, as well as Cityworks with office companion versions before 23.10. In response to the identified risk, Trimble released patches aimed at fixing this vulnerability on January 29, 2025.

Despite these updates, CISA has reported continuous exploitation attempts targeting specific Cityworks deployments. Investigations reveal that these exploitation attempts involve a Rust-based loader deploying Cobalt Strike and a Go-based remote access tool named VShell, along with other unidentified payloads, thus emphasizing the critical nature of the problem.

CISA has added CVE-2025-0994 to its Known Exploited Vulnerabilities catalog, underscoring the necessity for Federal Civilian Executive Branch agencies to address and remediate this flaw by February 28, 2025. Users and administrators of the affected software versions are strongly urged to apply the necessary updates without delay. Additionally, they should actively search for indicators of compromise (IoCs) to ensure their systems are not already affected.

The advisory issued by CISA highlights the imperative of keeping software updated as a primary measure to mitigate the risks associated with known vulnerabilities. This is particularly crucial for those that are actively exploited in real-world attacks, like the one currently targeting Trimble Cityworks. Cybersecurity professionals and users must adopt a vigilant stance, prioritizing the application of patches and continuous monitoring for any signs of compromise. By doing so, they can effectively protect their systems and data from the ever-evolving landscape of cyber threats. As the situation evolves, staying informed and responsive remains essential for those aiming to maintain robust cybersecurity defenses.

Risk Management

Explore more

OpenAI Expands AI with Major Abu Dhabi Data Center Project
May 28, 2025

The rapid evolution of artificial intelligence (AI) has spurred organizations to seek expansive infrastructure capabilities worldwide, and OpenAI is no exception. In a significant move, OpenAI has announced plans to construct a massive data center in Abu Dhabi. This undertaking represents a notable advancement in OpenAI’s Stargate initiative, aimed at expanding its AI infrastructure on a global scale. Partnering with

Can Windows 11 Transform PC Migration Forever?
May 28, 2025

For many users, setting up a new PC has historically been regarded as a cumbersome and time-consuming task, fraught with the intricacies of migrating files, installing applications, and adjusting settings to match previous configurations. The advent of new technology always brings promises of simplifying these processes. Microsoft is making strides to alleviate such arduous transitions by enhancing the PC migration

Google’s Data Center Proposal Sparks Local Concerns in Essex
May 28, 2025

In the face of technological advancement, tensions often arise between development projects and local community interests, as seen in the case of Google’s proposed data center at North Weald Airfield, Essex. This initiative aims to establish substantial data infrastructure, intended to bolster the UK’s digital capabilities. Yet, despite its potential benefits, the proposal has been met with significant objections from

How Does DataOps Revolutionize Data Activation?
May 28, 2025

In an era where data is recognized as a vital asset for businesses across industries, the concept of DataOps emerges as a transformative force. It combines Agile methodologies, DevOps principles, and advanced data engineering practices to revolutionize data activation, turning raw data into insightful, actionable intelligence. DataOps stands at the forefront of a digital metamorphosis that empowers organizations to derive

Are Modular Data Centers the Future of Infrastructure?
May 28, 2025

In recent years, there has been a noticeable shift toward adopting modular data centers, driven by the increasing need for flexible and scalable solutions in various industries. As traditional data centers present challenges in terms of scalability, cost-efficiency, and rapid deployment, the industry is looking toward modular alternatives to address these issues. An example of this trend can be seen