Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers
Malware and Vulnerabilities
February 10, 2025
Bleeping Computer
The flaw, tracked as CVE-2025-0994, is a high severity (CVSS v4.0 score: 8.6) deserialization problem that allows authenticated users to perform RCE attacks against a customer's Microsoft Internet Information Services (IIS) servers.
Read More
CISA
Trimble Cityworks
CVE-2025-0994
asset management software
unsafe deserialization
Publisher
Previous
Microsoft Says Attackers Use Exposed ASP.NET Keys to De ...
Malware and Vulnerabilities
Next
Scalable Vector Graphics Files Pose a Novel Phishing Th ...
Identity Theft, Fraud, Scams
/https://cyware-ent.s3.amazonaws.com/image_bank/2b44_shutterstock_509910508.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/ec7c_shutterstock_2304557185.jpg)
