{"vulnerability": "CVE-2026-12569", "sightings": [{"uuid": "9e2b79b7-645f-4d75-a633-7014a9baf1a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12569", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mojojjvsnz2c", "content": "Critical RCE in PTC Windchill PDMLink (CVE-2026-12569, CVSS 9.3) \u2014 no patch yet. Restrict network access & monitor vendor updates. https://radar.offseq.com/threat/cve-2026-12569-cwe-20-improper-input-validation-in-d3c6b7768402d666 #OffSeq #CVE202612569 #Security", "creation_timestamp": "2026-06-18T01:30:29.748192Z"}, {"uuid": "1aa99b78-e198-40fa-bfad-a6ff83939fdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojqerhu472k", "content": "CVE-2026-12569 - Remote Code Execution (RCE) vulnerability in Windchill PDMlink\nCVE ID : CVE-2026-12569\n \n Published : June 18, 2026, 12:11 a.m. | 1\u00a0hour, 31\u00a0minutes ago\n \n Description : A critical remote code execution (RCE) vulnerability has been reported in PTC Windchill PD...", "creation_timestamp": "2026-06-18T02:03:39.548287Z"}, {"uuid": "eeb0e546-db1d-4f04-91f5-410052ab54e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mp55wjyy7k2f", "content": "\ud83d\uded1 CVE-2026-12569\nPTC Windchill and FlexPLM\nCVSS 9.3 / EPSS 0% / KEV \u2705\nTL;DR: A critical remote code execution (RCE) vulnerability has been reported in PTC Windc\u2026\nhttps://cvesentinel.com/report/CVE-2026-12569?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-06-25T19:26:46.258675Z"}, {"uuid": "929023a8-4de2-4970-afdc-a2828bf9ab1e", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/318c6fab-1fd9-4f64-acc3-edc7d13d4030", "content": "", "creation_timestamp": "2026-06-25T20:00:01.914560Z"}, {"uuid": "f3529425-bca6-4fb9-9e62-42a278801060", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/eafceb5e-2031-4547-b567-fef9e152991e", "content": "", "creation_timestamp": "2026-06-25T20:00:17.176811Z"}, {"uuid": "f16f8f1a-50f9-44c3-98a0-6091e454ec3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6837277", "content": "2026-06-25: [CVE-2026-12569] PTC Windchill and FlexPLM Improper Input Validation VulnerabilityPTC Windchill and FlexPLM contains an improper input validation vulnerability allowing an unauthenticated, remote attacker to execute arbitrary code by sending a malicious request to the network.\ncisakev", "creation_timestamp": "2026-06-25T20:02:50.934463Z"}, {"uuid": "99138e98-3a5f-43a9-a3d7-832b5eaa4d67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/happeningnow.news/post/3mp5bmys3wq2x", "content": "CISA Adds Two Known Exploited Vulnerabilities to Catalog\nCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.   CVE-2026-12569 PTC Windchill and\u2026\n\n\ud83d\udd17 https://hnow.live/a/1d9bc7d6", "creation_timestamp": "2026-06-25T20:33:00.999932Z"}, {"uuid": "7d7594df-1947-427c-9161-682052cab8d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mp5g37q2xe2e", "content": "CISA\u304c\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u60272\u4ef6\u3092\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0 \n\nCISA Adds Two Known Exploited Vulnerabilities to Catalog  #CISA (Jun 25)\n\nCVE-2026-12569 PTC Windchill\u304a\u3088\u3073FlexPLM\u306b\u304a\u3051\u308b\u4e0d\u9069\u5207\u306a\u5165\u529b\u691c\u8a3c\u306e\u8106\u5f31\u6027\nCVE-2026-20230 Cisco Unified Communications Manager\u306e\u30b5\u30fc\u30d0\u30fc\u30b5\u30a4\u30c9\u30ea\u30af\u30a8\u30b9\u30c8\u30d5\u30a9\u30fc\u30b8\u30a7\u30ea\uff08SSRF\uff09\u8106\u5f31\u6027 \n\nwww.cisa.gov/news-events/...", "creation_timestamp": "2026-06-25T21:52:34.150487Z"}, {"uuid": "8374c7f3-845c-4bf1-bd8d-87d1cea9d35c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mp6jugnkkr2w", "content": "CVE-2026-12569 in PTC Windchill/FlexPLM is being exploited in the wild by remote unauthenticated attackers to execute arbitrary code.\n", "creation_timestamp": "2026-06-26T08:33:00.907568Z"}, {"uuid": "44b467de-1a2f-4544-95b9-a3ecb412c912", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/cerberusit.bsky.social/post/3mp6vknvr4w26", "content": "CISA added the PTC Windchill CVE-2026-12569 remote execution flaw to its known exploited list. Another day, another critical vulnerability being actively abused in the wild.\n\n#windchillrce #patchingagain", "creation_timestamp": "2026-06-26T12:02:20.840603Z"}, {"uuid": "fb3eca59-ecb7-4338-830b-c66c8e476fc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/cerberusit.bsky.social/post/3mp6vkqlzcj22", "content": "CISA has kindly added the remote code execution flaw CVE-2026-12569 in PTC Windchill to its ever-expanding catalog of active threats. This means the wild exploits are officially running amok, affecting unfortunate enterprises relying on this software. Protecting ourselves from th...\n\nRead full story", "creation_timestamp": "2026-06-26T12:02:21.954214Z"}, {"uuid": "c61b2285-cb07-4708-a1f1-19f54e44b0d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/thecybermind.co/post/3mp6vkw2kgo2r", "content": "CISA adds CVE-2026-12569 to the KEV catalog as adversaries actively exploit PTC Windchill & FlexPLM input validation vulnerabilities. Lock down your supply chain assets. Full forensic indicators, lateral movement tracking, and active endpoint hardening protocols are live:\u2026", "creation_timestamp": "2026-06-26T12:02:26.103473Z"}, {"uuid": "5cbd62a1-f72f-438f-aeb8-27eaeb1f1e59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/thecybermind.co/post/3mp6zgoti4k2p", "content": "CISA adds CVE-2026-12569 to the KEV catalog as adversaries actively exploit PTC Windchill & FlexPLM platforms. This is an immediate threat to supply chain integrity and intellectual property. Access our complete executive risk mitigation framework for corporate leadership:\u2026", "creation_timestamp": "2026-06-26T13:11:39.052326Z"}, {"uuid": "b4a8d3f1-47d4-49a6-8f76-3f54e531043b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mp727buqmn2t", "content": "CISA added CVE-2026-12569 to KEV after evidence of active exploitation of PTC Windchill and FlexPLM systems via malicious requests.\n", "creation_timestamp": "2026-06-26T13:25:24.469663Z"}, {"uuid": "c25268cb-a0fc-47d1-a986-01f27e4aa681", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116816986268752727", "content": "\ud83d\udcf0 CISA Adds Actively Exploited PTC and Cisco Flaws to KEV Catalog, Mandates Federal Patching\n\ud83d\udce2 CISA adds two actively exploited vulnerabilities to its KEV catalog: CVE-2026-12569 in PTC products and CVE-2026-20230 in Cisco UCM. Federal agencies are mandated to patch. All orgs should prioritize these now! \u26a0\ufe0f #CyberSecurity #Vulnerability #CI...\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/cisa-adds-actively-exploited-ptc-and-cisco-flaws-to-kev-cata\u2026", "creation_timestamp": "2026-06-26T14:55:55.843061Z"}, {"uuid": "0ec3f548-3318-4915-b86e-99f07a4ac55b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mp77bxemxo2f", "content": "\ud83d\udce2 CISA adds two actively exploited vulnerabilities to its KEV catalog: CVE-2026-12569 in PTC products and CVE-2026-20230 in Cisco UCM. Federal agencies are mandated to patch. All orgs should prioritize these now! \u26a0\ufe0f #CyberSecurity #Vulnerability #CI...\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-06-26T14:56:22.718008Z"}, {"uuid": "ccb07665-b7c4-4a58-9a94-bcd65a15ef6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/newssecia.bsky.social/post/3mp7ffsykag2s", "content": "\ud83e\udd16 CISA adds CVE-2026-12569 (PTC Windchill RCE) to KEV \u2014 actively exploited. Unauthenticated RCE deploys JSP web shells in enterprise PDM/PLM systems.\nhttps://thehackernews.com/2026/06/cisa-adds-exploited-ptc-windchill-rce.html", "creation_timestamp": "2026-06-26T16:45:54.714735Z"}, {"uuid": "79cf9c4a-f7f3-4dad-a2a2-78f18a589723", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mp7fjtd7k72h", "content": "\ud83d\udd34 EXPLOITED\n\nThe server holding your product blueprints can be taken over with no password.\n\nCISA just put PTC Windchill on its must-patch list, and web shells are landing on the login page.\n\nRun Windchill or FlexPLM? Patch to 11.0 M030 by Sunday. (CVE-2026-12569)", "creation_timestamp": "2026-06-26T16:48:09.407862Z"}, {"uuid": "f124401b-378f-4ca1-aecb-1fd5f46fec0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12569", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mpaix7pvdv2b", "content": "PTC Windchill Under Siege: 93 CVSS RCE Flaw (CVE-2026-12569) Actively Exploited for JSP Web Shell Deployment \u2013 CISA KEV Adds Urgency +\u00a0Video\n\nIntroduction: A critical remote code execution vulnerability in PTC Windchill PDMLink and FlexPLM enterprise Product Lifecycle Management (PLM) solutions is\u2026", "creation_timestamp": "2026-06-27T03:22:00.190360Z"}]}