Security News CISA Warns of Active Exploitation in Trimble Cityworks Vulnerability Leading to IIS RCE TheHackerNews Daniel Bender 07 Feb 2025 Share CISA warns of active attacks exploiting Trimble Cityworks CVE-2025-0994 (CVSS 8.6). Hackers deploy Rust-based malware, Cobalt Strike, and VShell.