CVE-2025-58744
Published: 20 January 2026
Summary
CVE-2025-58744 is a medium-severity Use of Hard-coded Credentials (CWE-798) vulnerability in Milner Imagedirector Capture. Its CVSS base score is 6.9 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked at the 8.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 IA-5 (Authenticator Management) and SC-12 (Cryptographic Key Establishment and Management).
Deeper analysis
CVE-2025-58744, published on 2026-01-20, is a Use of Default Credentials and Hard-coded Credentials vulnerability (CWE-798, CWE-1392) in the C2SGlobalSettings.dll component of Milner ImageDirector Capture on Windows. The flaw allows decryption of document archive files using credentials decrypted with a hard-coded application encryption key. It affects ImageDirector Capture versions from 7.0.9.0 before 7.6.3.25808 and has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
Unauthenticated remote attackers can exploit this vulnerability over the network with low complexity and no user interaction required. Successful exploitation grants access to decrypt sensitive document archive files, leading to high confidentiality impact without affecting integrity or availability.
Mitigation involves upgrading to ImageDirector Capture version 7.6.3.25808 or later. Additional details are available in the advisory at https://sra.io/advisories.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-206307
Vulnerability details
Use of Default Credentials, Hard-coded Credentials vulnerability in C2SGlobalSettings.dll in Milner ImageDirector Capture on Windows allows decryption of document archive files using credentials decrypted with hard-coded application encryption key. This issue affects ImageDirector Capture: from 7.0.9.0 before 7.6.3.25808.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Hard-coded key enables remote decryption and access to sensitive local archive files, directly facilitating data collection from the system.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Flaw remediation requires timely patching of the hard-coded encryption key vulnerability in ImageDirector Capture to prevent decryption of sensitive document archives.
Authenticator management prohibits hard-coded or default credentials and keys, directly mitigating the vulnerability that allows decryption using a hard-coded application encryption key.
Cryptographic key establishment and management ensures keys are generated, distributed, and protected securely, preventing reliance on extractable hard-coded keys for credential decryption.