The following enhancements and improvements are now available to Censys ASM and Search customers.
Rapid Response
The Censys Rapid Response team published information about and queries for the following issues and vulnerabilities.
- Trimble Cityworks Vulnerability Added to CISA KEV [CVE-2025-0994]
- Use the following queries to map exposed Trimble Citywork instances. Not all of these are necessarily vulnerable, as specific version information may not be available.
- Censys Platform query
- Censys Search query
- Censys ASM query
- Censys ASM risk query
New Fingerprints
Added the following fingerprints.
| Type | Name | Description | Query |
| risk | Vulnerable Trimble Cityworks [CVE-2025-0994] | This Trimble Cityworks device is running a version prior to 15.8.9 and is vulnerable to CVE-2025-0994, a deserialization vulnerability that may allow an unauthenticated attacker to perform remote code execution against a customer's Microsoft IIS web server. | |
| software | Trimble Cityworks | This is a Trimble Cityworks management interface. Trimble Cityworks is an enterprise asset management (EAM) and work order management system designed for local governments and utility agencies. |
