Word Press Vulnerability

After file scanning I get the following message (on ALL my sites): "WordPress Vulnerability Version: 4.7.5 WordPress 2.3-4.7.4 - Host Header Injection in Password Reset". When I look to correct the problem it says that this bug will be fixed on future updates of WP. However i HAVE the current version of WP (4.7.5) but the message keeps coming up. Please advise.