COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2026-12569

CVE-2026-12569

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2026-06-25
Reference
https://nvd.nist.gov/vuln/detail/CVE-2026-12569
⚡ RCE ⌖ exploited in the wild shame 85/100 rceexploited-in-wildransomwaresupply-chaindata-breachunpatched

PTC Windchill and FlexPLM suffered a critical unauthenticated remote code execution vulnerability (CVE-2026-12569) actively exploited in the wild.

This improper input validation flaw allows unauthenticated attackers to execute arbitrary code remotely, posing a severe threat to defense contractors relying on PTC's PLM systems for secure data handling. The active exploitation status indicates immediate risk to DIB organizations using these products, necessitating urgent patching and network segmentation to prevent unauthorized access to intellectual property and operational data.

Shame score — Active exploitation of a critical RCE vulnerability in widely used PLM products demonstrates a severe security oversight that directly compromises defense contractor systems.

Players implicated

PTC · vendorWindchill and FlexPLM · product

Description

PTC Windchill and FlexPLM contains an improper input validation vulnerability allowing an unauthenticated, remote attacker to execute arbitrary code by sending a malicious request to the network.

Affected FedRAMP products 1 in the catalog

ProductProviderStatusMatch
PTC Cloud Services PTC Authorized vendor-exact · 0.90