Cyber Resilience

CVE-2025-58744

Medium

Published: 20 January 2026

Published
20 January 2026
Modified
10 February 2026
KEV Added
Patch
CVSS Score v4 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0003 8.3th percentile
Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-58744 is a medium-severity Use of Hard-coded Credentials (CWE-798) vulnerability in Milner Imagedirector Capture. Its CVSS base score is 6.9 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked at the 8.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 IA-5 (Authenticator Management) and SC-12 (Cryptographic Key Establishment and Management).

Deeper analysis

CVE-2025-58744, published on 2026-01-20, is a Use of Default Credentials and Hard-coded Credentials vulnerability (CWE-798, CWE-1392) in the C2SGlobalSettings.dll component of Milner ImageDirector Capture on Windows. The flaw allows decryption of document archive files using credentials decrypted with a hard-coded application encryption key. It affects ImageDirector Capture versions from 7.0.9.0 before 7.6.3.25808 and has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).

Unauthenticated remote attackers can exploit this vulnerability over the network with low complexity and no user interaction required. Successful exploitation grants access to decrypt sensitive document archive files, leading to high confidentiality impact without affecting integrity or availability.

Mitigation involves upgrading to ImageDirector Capture version 7.6.3.25808 or later. Additional details are available in the advisory at https://sra.io/advisories.

EU & UK References

Vulnerability details

Use of Default Credentials, Hard-coded Credentials vulnerability in C2SGlobalSettings.dll in Milner ImageDirector Capture on Windows allows decryption of document archive files using credentials decrypted with hard-coded application encryption key. This issue affects ImageDirector Capture: from 7.0.9.0 before 7.6.3.25808.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1005 Data from Local System Collection
Adversaries may search local system sources, such as file systems, configuration files, local databases, virtual machine files, or process memory, to find files of interest and sensitive data prior to Exfiltration.
Why these techniques?

Hard-coded key enables remote decryption and access to sensitive local archive files, directly facilitating data collection from the system.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-58743Same product: Microsoft Windows
CVE-2025-0976Same product: Microsoft Windows
CVE-2025-14974Same product: Microsoft Windows
CVE-2025-24984Same vendor: Microsoft
CVE-2026-34336Same vendor: Microsoft
CVE-2025-58741Same product: Milner Imagedirector Capture
CVE-2025-21343Same vendor: Microsoft
CVE-2026-40360Same vendor: Microsoft
CVE-2025-24991Same vendor: Microsoft
CVE-2026-0905Same product: Microsoft Windows

Affected Assets

milner
imagedirector capture
7.0.9 — 7.6.3.25808

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

preventrecover

Flaw remediation requires timely patching of the hard-coded encryption key vulnerability in ImageDirector Capture to prevent decryption of sensitive document archives.

prevent

Authenticator management prohibits hard-coded or default credentials and keys, directly mitigating the vulnerability that allows decryption using a hard-coded application encryption key.

prevent

Cryptographic key establishment and management ensures keys are generated, distributed, and protected securely, preventing reliance on extractable hard-coded keys for credential decryption.

References