A critical remote code execution vulnerability in PTC Windchill PDMlink and PTC FlexPLM enterprise Product Data Management and Product Lifecycle Management software has been added to the Known Exploited Vulnerabilities catalog by the U.S. Cybersecurity and Infrastructure Security Agency. This move comes after evidence of active exploitation was discovered, highlighting the vulnerability's potential for widespread abuse. The vulnerability allows attackers to execute arbitrary code, potentially leading to web shell attacks and other malicious activities. As a result, organizations using the affected software are advised to take immediate action to patch the vulnerability and prevent exploitation. The addition of this vulnerability to the KEV catalog underscores the urgency of addressing the issue, as attackers are already leveraging it to gain unauthorized access to systems1. This development matters to security practitioners because it emphasizes the need for timely patch management and vulnerability remediation to prevent exploitation of known vulnerabilities.