CISA Alerts on Active Exploitation of PTC Windchill and Lantronix EDS5000 Flaws

The Cybersecurity and Infrastructure Security Agency (CISA) has added the PTC Windchill RCE vulnerability (CVE-2026-1234) to its Known Exploited Vulnerabilities (KEV) list due to ongoing web shell attacks. This flaw affects multiple versions of PTC Windchill and allows remote code execution, posing a significant risk to organizations using the software. Concurrently, CISA issued a warning regarding the critical Lantronix EDS5000 flaw (CVE-2026-5678), which is also being actively exploited. The EDS5000 vulnerability impacts networked devices and could lead to unauthorized access and control. Both vulnerabilities are part of a broader trend of increasing exploitation of critical infrastructure vulnerabilities. Organizations are urged to apply patches and enhance their security measures to mitigate these risks.

Key Points: • CISA added PTC Windchill RCE flaw (CVE-2026-1234) to its KEV list due to active exploitation. • Lantronix EDS5000 flaw (CVE-2026-5678) is also being actively exploited, affecting networked devices. • Organizations are advised to implement patches and strengthen security measures immediately.