CVE-2025-0994 PoC — Trimble Cityworks 安全漏洞

Source

https://github.com/rxerium/CVE-2025-0994

Associated Vulnerability

Title:Trimble Cityworks 安全漏洞 (CVE-2025-0994)
Description:Trimble Cityworks是美国Trimble公司的一个用于公共资产生命周期管理和许可的顶级以 GIS 为中心的平台。 Trimble Cityworks 15.8.9之前版本存在安全漏洞，该漏洞源于存在反序列化问题，允许经过身份验证的用户远程执行代码。

Description

Cityworks deserialization of untrusted data vulnerability PoC

Readme

# CVE-2025-0994

 ## How does this detection method work?

This Nuclei template extracts the version stored in the HTML body and based on the version we can determine whether the instance is vulnerable to CVE-2025-0994 or not. 

Patched version: 15.8.9

 ## How do I run this script?

1. Download Nuclei from [here](https://github.com/projectdiscovery/nuclei)
2. Copy the template to your local system
3. Run the following command: `nuclei -u https://yourHost.com -t template.yaml` 

## References

- https://thehackernews.com/2025/02/cisa-warns-of-active-exploitation-in.html
- https://www.shodan.io/search?query=title%3A%22Cityworks%22&page=1


## Disclaimer

Use at your own risk, I will not be responsible for illegal activities you conduct on infrastructure you do not own or have permission to scan.

## Contact

Feel free to reach out to me on [Signal](https://signal.me/#eu/0Qd68U1ivXNdWCF4hf70UYFo7tB0w-GQqFpYcyV6-yr4exn2SclB6bFeP7wTAxQw) or via email: rishi@rxerium.com.

File Snapshot


 [4.0K]  /data/pocs/542df52030eedcc189376563cda57e589b8175ec
├── [ 981]  README.md
└── [1.1K]  template.yaml

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!