CVE-2025-58744 is a vulnerability classified under CWE-1392 (Use of Default Credentials) and CWE-798 (Use of Hard-coded Credentials) affecting Milner's ImageDirector Capture software on Windows platforms. Specifically, the vulnerability resides in the C2SGlobalSettings.dll component, where a hard-coded application encryption key is embedded within the software. This key is used to encrypt and decrypt document archive files managed by ImageDirector Capture versions from 7.0.9.0 up to but not including 7.6.3.25808. Because the encryption key is hard-coded and accessible, an attacker with local access to the system can decrypt sensitive document archives without needing any authentication, user interaction, or elevated privileges. The CVSS 4.0 score of 6.9 reflects a medium severity, with an attack vector classified as local (AV:L), low attack complexity (AC:L), no privileges required (PR:N), and no user interaction (UI:N). The vulnerability impacts confidentiality (VC:H) but does not affect integrity or availability. No patches are currently linked, and no known exploits have been reported in the wild. This vulnerability undermines the confidentiality of sensitive documents stored within the ImageDirector Capture system, potentially exposing proprietary or regulated information to unauthorized parties. Organizations using affected versions should be aware of the risk of data exposure and plan for remediation once patches are available.

The primary impact of CVE-2025-58744 is the compromise of confidentiality for document archives managed by Milner ImageDirector Capture. European organizations that rely on this software for document capture and archival could face unauthorized disclosure of sensitive or regulated information, including intellectual property, personal data, or confidential business documents. This could lead to compliance violations under GDPR and other data protection regulations, resulting in legal penalties and reputational damage. Since exploitation requires local access but no privileges or user interaction, insider threats or attackers who gain initial foothold on affected systems could leverage this vulnerability to escalate data access. The lack of impact on integrity and availability limits the scope to data confidentiality, but the sensitivity of document archives makes this a significant concern. Organizations in sectors such as finance, healthcare, legal, and government, where document confidentiality is critical, are particularly at risk. The absence of known exploits reduces immediate threat but does not eliminate risk, especially as attackers may develop exploits once the vulnerability becomes public knowledge.

1. Upgrade ImageDirector Capture to version 7.6.3.25808 or later once the vendor releases a patch addressing this vulnerability. 2. Until a patch is available, restrict local access to systems running affected versions to trusted personnel only, using strict access controls and monitoring. 3. Implement network segmentation to isolate systems running ImageDirector Capture from general user networks to reduce risk of unauthorized local access. 4. Encrypt document archives with additional layers of encryption external to the application to mitigate risks from the embedded key compromise. 5. Conduct regular audits and monitoring of access logs on affected systems to detect any unauthorized access attempts. 6. Educate staff about the risks of insider threats and enforce strong endpoint security controls to prevent unauthorized local access. 7. Review and update incident response plans to include scenarios involving potential data exposure from this vulnerability. 8. Consider deploying host-based intrusion detection systems (HIDS) to alert on suspicious activities related to the ImageDirector Capture application files.