Hi All ,
Currently there is a warning about pkexec described in https://isc.sans.edu/diary/rss/28272.
I was able to validate PKEXEC tool existence as SUID binary on hyperscale nodes .
This seems to be OS level application and not used by commvault software .
I believe a simple chmod of this executable is enough to prevent the exploit of being used (chmod 0755 /usr/bin/pkexec)
Is there any action item on Commvault to remediate this or this needs to be addressed by customer by applying OS patches ?