CVE-2007-4752 (vulnerability: openssh-x11-cookie-auth-bypass)

Our scans have detected that we’re exposed to CVE IDs: CVE-2007-4752 (vulnerability: openssh-x11-cookie-auth-bypass)

Digi CM running on v1.9.5.3 (as per your documentation this is the recommended version).

What solution do you propose?

This vulnerability is based in the improper handling of an untrusted X11 cookie. The exploit of this will allow attackers to gain privileges by causing an X client to be treated as trusted. Since the CM does not support X11, this finding is a false positive. There is no attack that can be executed by this vulnerability, as the functions just do not exist within the Digi CM.