CISA Sets Urgent June 28 Deadline for Federal Agencies to Patch Actively Exploited Cisco and PTC Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) has mandated that federal agencies address actively exploited vulnerabilities in Cisco Unified Communications Manager Server (CVE-2026-20230) and PTC Windchill/FlexPLM (CVE-2026-12569) by an urgent deadline of Sunday, June 28, 2026. The Cisco flaw is a server-side request forgery, while the PTC vulnerability is a critical remote code execution issue. Both are being exploited in attacks, requiring immediate remediation or mitigation.