The United States Cybersecurity and Infrastructure Security Agency (CISA) has alerted that a security vulnerability affecting Trimble Cityworks GIS-focused asset management software is currently being actively exploited in real-world scenarios.
The flaw referenced is CVE-2025-0994 (CVSS v4 scoring: 8.6), an issue related to deserialization of unreliable data that may allow an unauthorized individual to perform remote code execution.
“This might