The host is installed with OpenSSH before 7.2 and is prone to an access control vulnerability. A flaw is present in the application, which fails to properly generate cookie. Successful exploitation could allow remote attackers to to trigger a fallback and obtain trusted X11 forwarding privileges.