This vulnerability is based in the improper handling of an untrusted X11 cookie. The exploit of this will allow attackers to gain privileges by causing an X client to be treated as trusted. Since the CM does not support X11, this finding is a false positive. There is no attack that can be executed by this vulnerability, as the functions just do not exist within the Digi CM.