Sign In
Forgot Password

Don’t have an account? Create One.

Spring Framework Vulnerability Hotfix for NetBackup Appliances

HotFix Critical


Spring Framework Vulnerability Hotfixes for NetBackup Appliance/NetBackup Virtual Appliance versions MR3 and MR2


The hotfix fixes a zero-day vulnerability (CVE-2022-22965) in the open-source Java framework, Spring, that could allow an attacker to execute arbitrary code on a remote web server. You must first upgrade to MR3 or MR2 before applying the hotfix.



Applies to the following product releases

Update files

File name Description Version Platform Size