b2b-daily
Home | IT | Cyber Security

CISA Warns of Active Exploits Targeting Trimble Cityworks Software Flaw

Avatar photo
by Bairon McAdams
February 10, 2025
CISA Warns of Active Exploits Targeting Trimble Cityworks Software Flaw
Article Highlights
Off On

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding an actively exploited vulnerability in Trimble Cityworks, a GIS-centric asset management software. This vulnerability, identified as CVE-2025-0994, is a deserialization of untrusted data flaw that holds a CVSS v4 score of 8.6, allowing remote code execution by authenticated users on Microsoft’s IIS web server.

The vulnerability affects all versions of Cityworks prior to 15.8.9, as well as Cityworks with office companion versions before 23.10. In response to the identified risk, Trimble released patches aimed at fixing this vulnerability on January 29, 2025.

Despite these updates, CISA has reported continuous exploitation attempts targeting specific Cityworks deployments. Investigations reveal that these exploitation attempts involve a Rust-based loader deploying Cobalt Strike and a Go-based remote access tool named VShell, along with other unidentified payloads, thus emphasizing the critical nature of the problem.

CISA has added CVE-2025-0994 to its Known Exploited Vulnerabilities catalog, underscoring the necessity for Federal Civilian Executive Branch agencies to address and remediate this flaw by February 28, 2025. Users and administrators of the affected software versions are strongly urged to apply the necessary updates without delay. Additionally, they should actively search for indicators of compromise (IoCs) to ensure their systems are not already affected.

The advisory issued by CISA highlights the imperative of keeping software updated as a primary measure to mitigate the risks associated with known vulnerabilities. This is particularly crucial for those that are actively exploited in real-world attacks, like the one currently targeting Trimble Cityworks. Cybersecurity professionals and users must adopt a vigilant stance, prioritizing the application of patches and continuous monitoring for any signs of compromise. By doing so, they can effectively protect their systems and data from the ever-evolving landscape of cyber threats. As the situation evolves, staying informed and responsive remains essential for those aiming to maintain robust cybersecurity defenses.

Risk Management

Explore more

Paypercut Raises €5 Million to Streamline CEE Payments
June 4, 2026

The financial architecture across Central and Eastern Europe has long remained a patchwork of disparate national systems, creating significant friction for businesses attempting to operate across multiple borders simultaneously. This logistical nightmare often results in delayed settlements, exorbitant conversion fees, and a general lack of transparency that stifles the growth of emerging digital enterprises in the region. Paypercut recently secured

Autonomous AI Agents Drive the Next Finance Transformation
June 4, 2026

The traditional boundaries of corporate accounting have dissolved as autonomous desktop agents transition from experimental pilot programs into the operational backbone of modern finance departments. In this current landscape, the reliance on manual data entry and static spreadsheet management has been replaced by sophisticated digital entities capable of executing complex tasks with minimal human intervention. Unlike the rigid robotic process

Is BitMine Using the MicroStrategy Playbook for Ethereum?
June 4, 2026

The sudden pivot of corporate treasury strategies toward high-yield digital assets has fundamentally redefined how institutional investors evaluate the intrinsic value of publicly traded mining firms during this current market cycle. While the historical precedent was set by firms focusing exclusively on Bitcoin, the emergence of Ethereum as a primary reserve asset signals a significant shift in the risk appetite

Which Accounting Software Is Best for Your Startup’s Growth?
June 4, 2026

The difference between a startup that achieves market dominance and one that fades into obscurity often comes down to the precision of its financial architecture and how clearly leadership understands cash flow dynamics. While a revolutionary product or a visionary marketing strategy can spark initial interest, the long-term viability of a venture is anchored in its ability to manage capital

Can Enterprise Security Keep Pace With Generative AI?
June 4, 2026

The global digital infrastructure is currently witnessing an unprecedented evolution as generative artificial intelligence transitions from a novelty into a core enterprise utility, yet this rapid adoption has simultaneously equipped cybercriminals with sophisticated tools that outpace traditional security measures. Organizations in 2026 find themselves at a critical juncture where the speed of deployment often exceeds the speed of defense, creating