CVE-2025-58742

Summary

Insufficiently Protected Credentials, Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Connection Settings dialog in Milner ImageDirector Capture on Windows allows Adversary in the Middle (AiTM) by modifying the 'Server' field to redirect client authentication.This issue affects ImageDirector Capture: from 7.0.9 before 7.6.3.25808.

Affected Software

VendorProductVersion RangeStatus
MilnerImageDirector Capture7.0.9 < 7.6.3.25808affected

Weaknesses

  • CWE-522: CWE-522 Insufficiently Protected Credentials
  • CWE-923: CWE-923 Improper Restriction of Communication Channel to Intended Endpoints

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References