PT-2026-3667 · Milner · Imagedirector Capture

Asa Reynolds

Publicado

2026-01-20

Atualizado

2026-02-10

CVE-2025-58742

CVSS v4.0

8.5

Alta

Vetor

AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:H/SI:H/SA:H

Name of the Vulnerable Software and Affected Versions Milner ImageDirector Capture versions 7.0.9 through 7.6.3.25808

Description A security issue exists in the Connection Settings dialog of Milner ImageDirector Capture that allows an Adversary in the Middle (AiTM) attack. This occurs because the 'Server' field can be modified, redirecting client authentication. The vulnerability involves insufficiently protected credentials and improper restriction of the communication channel to intended endpoints.

Recommendations Update Milner ImageDirector Capture to version 7.6.3.25808 or later.

Correção

Insufficiently Protected Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-522CWE-923

Identificadores relacionados

CVE-2025-58742

Produtos afetados

Imagedirector Capture

PT-2026-3667 · Milner · Imagedirector Capture

CVE-2025-58742

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5