The critical deserialization vulnerability CVE-2026-12569 in PTC Windchill PDMLink is being actively exploited; attackers are installing web shells and targeting sensitive design and engineering data in defense, aerospace, and automotive sectors.
CISA confirms active exploitation of the remote code execution vulnerability CVE-2026-45247 in Magento cache extension and calls on federal agencies to remediate.
CISA warns of active exploitation of CVE-2024-21182 in Oracle WebLogic Server with low attack complexity and focus on data leakage; federal agencies must patch by June 4, 2026.
A two-year-old WebLogic vulnerability is listed on CISA’s catalog of actively exploited vulnerabilities, signaling attackers to target long-unpatched systems.