Milner ImageDirector Capture Insufficiently Protected Credentials Vulnerability Allowing Adversary in the Middle Attack

Vulnerability

A vulnerability in the Connection Settings dialog of Milner ImageDirector Capture on Windows has been identified, allowing for an Adversary in the Middle (AiTM) attack. This issue arises from insufficiently protected credentials and improper restriction of communication channels to intended endpoints. By modifying the 'Server' field, it is possible to redirect client authentication. The vulnerability affects Milner ImageDirector Capture versions from 7.0.9 prior to 7.6.3.25808, with earlier versions potentially also being impacted.

Impact

Exploitation of this vulnerability could lead to unauthorized interception and modification of client authentication, allowing an attacker to impersonate a user or gain unauthorized access to resources.

Added: Jan 20, 2026, 11:39 PM

Updated: Jan 20, 2026, 11:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Milner ImageDirector Capture Insufficiently Protected Credentials Vulnerability Allowing Adversary in the Middle Attack

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating