PT-2026-3667 · Milner · Imagedirector Capture

Asa Reynolds

Published

2026-01-20

Updated

2026-02-10

CVE-2025-58742

CVSS v4.0

8.5

High

Vector

AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:H/SI:H/SA:H

Name of the Vulnerable Software and Affected Versions Milner ImageDirector Capture versions 7.0.9 through 7.6.3.25808

Description A security issue exists in the Connection Settings dialog of Milner ImageDirector Capture that allows an Adversary in the Middle (AiTM) attack. This occurs because the 'Server' field can be modified, redirecting client authentication. The vulnerability involves insufficiently protected credentials and improper restriction of the communication channel to intended endpoints.

Recommendations Update Milner ImageDirector Capture to version 7.6.3.25808 or later.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522CWE-923

Related Identifiers

CVE-2025-58742

Affected Products

Imagedirector Capture

PT-2026-3667 · Milner · Imagedirector Capture

CVE-2025-58742

Weakness Enumeration

Related Identifiers

Affected Products

References · 5