{"id":12193,"date":"2024-10-10T09:33:55","date_gmt":"2024-10-10T07:33:55","guid":{"rendered":"https:\/\/www.inprosec.com\/?p=12193"},"modified":"2024-10-10T09:33:55","modified_gmt":"2024-10-10T07:33:55","slug":"sap-security-notes-october-2024","status":"publish","type":"post","link":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/","title":{"rendered":"SAP Security Notes, October 2024"},"content":{"rendered":"<p><strong>Inprosec through its services, such as the SAP Security Assessment, helps its customers to improve the security levels of their SAP systems.<\/strong><\/p>\n\n<h2>September 2024 notes<\/h2>\n<h3>Summary and highlights of the month<\/h3>\n<p>The total number of notes\/patches was 13, 6 fewer than last month. This month there were no HotNews, unlike last month, when there was 1. On the other hand, it is worth noting that the number of high-criticality notes has increased compared to last month: 4 this month. As always, we will leave the medium and low notes unreviewed, but <strong>we will provide details on a total of 4 notes<\/strong> (all of which have a CVSS of <strong>7<\/strong> or higher).<\/p>\n<p>We have <strong>a total of 13 notes<\/strong> for the entire month (all 13 from Patch Tuesday, 7 new ones and 6 updates).<\/p>\n<p>We will review in detail a total of 4 notes, the high-priority notes for this month, which consist of 2 updates and 2 new notes (those with a CVSS score greater than or equal to <strong>7<\/strong>).<\/p>\n<ol>\n<li><strong>The most critical note of the month (<\/strong>with a<strong> CVSS <\/strong><span style=\"color: #ff0000;\"><strong>9.8<\/strong><\/span><strong>)<\/strong> is a note with critical priority related to<strong> &#8220;Missing Authentication check in SAP BusinessObjects Business Intelligence Platform&#8221;.<\/strong><\/li>\n<li>The next in criticality <strong>(CVSS<\/strong> <span style=\"color: #ff0000;\"><strong>8.0<\/strong><\/span><strong>)<\/strong> is another high-priority note related to <strong>\u201cMultiple vulnerabilities in SAP Enterprise Project Connection\u201d.<\/strong><\/li>\n<li>The next in criticality <strong>(CVSS<\/strong> <span style=\"color: #ffcc00;\"><strong>7.7<\/strong><\/span><strong>)<\/strong> is a high-priority note related to <strong>\u201cInsecure File Operations vulnerability in SAP BusinessObjects Business Intelligence Platform (Web Intelligence)\u201d.<\/strong><\/li>\n<li>The next in criticality <strong>(CVSS<\/strong> <span style=\"color: #ffcc00;\"><strong>7.7<\/strong><\/span><strong>)<\/strong> is a high-priority note related to <strong>\u201cMissing Authorization check in SAP PDCE\u201d.<\/strong><\/li>\n<li>The following in criticality <strong>(CVSS<\/strong> <span style=\"color: #ffcc00;\"><strong>6.5<\/strong><\/span>and <span style=\"color: #ffcc00;\"><strong>6.0<\/strong><\/span><strong>)<\/strong> are two medium-priority notes related to <strong>\u201cMultiple vulnerabilities in SAP Replication Server (FOSS)\u201d<\/strong> and <strong>\u201cInformation disclosure vulnerability in SAP NetWeaver AS for Java (Destination Service)\u201d.<\/strong><\/li>\n<li>This month, the most predominant types are related to <strong>\u201cMissing Authorization check in SAP\u201d<\/strong> (3\/13 on patch day) and <strong>\u201cInformation Disclosure vulnerability in SAP\u201d<\/strong> (3\/13 on patch day).<\/li>\n<\/ol>\n<p>In the graph, we can see the <strong><u>classification of the October notes<\/u><\/strong>, as well as the evolution and classification over the last 5 previous months (only Sec. Tuesday \/ Patch Day notes \u2013 by SAP):<\/p>\n<p><img decoding=\"async\" class=\"aligncenter wp-image-12195\" src=\"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg\" alt=\"\" width=\"832\" height=\"437\" srcset=\"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg 1200w, https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024-300x158.jpg 300w, https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024-1024x538.jpg 1024w, https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024-600x315.jpg 600w\" sizes=\"(max-width: 832px) 100vw, 832px\" \/><\/p>\n<h3>Full details<\/h3>\n<p>The <strong>complete detail of the most relevant notes<\/strong> is as follows:<\/p>\n<ol>\n<li><strong><u>Update &#8211; Missing Authentication check in SAP BusinessObjects Business Intelligence Platform (3479478)<\/u><\/strong><strong>: <\/strong>In SAP BusinessObjects Business Intelligence Platform, if Single Sign-On (SSO) is enabled in enterprise authentication, an unauthorized attacker can obtain a login token through a REST endpoint, which could compromise the entire system. This severely affects confidentiality, integrity and availability. The issue is fixed in the patches for SBOP BI PLATFORM SERVERS 4.2, 4.3 and 2025 releases<strong>.<\/strong> <strong>CVSS v3 Base Score: <\/strong><span style=\"color: #ff0000;\"><strong>9,8\u00a0<\/strong><\/span><strong>\/ 10 <\/strong><strong>[CVE-2024-41730]<\/strong><\/li>\n<li>\u00a0<strong><u>Multiple vulnerabilities in SAP Enterprise Project Connection (3523541)<\/u><\/strong><strong>:<\/strong> SAP Enterprise Project Connection uses vulnerable versions of the open-source libraries Spring Framework and Log4j, related to the CVEs: CVE-2024-22259, CVE-2024-38809, CVE-2024-38808, and CVE-2022-23302. The solution is to apply a patch that updates the libraries to safe versions, using Spring framework and reload4j. It is recommended to implement the patch mentioned in the SAP Security Note to resolve these vulnerabilities. <strong>CVSS v3 Base Score<\/strong> <strong><span style=\"color: #ff0000;\">8,0<\/span> <\/strong><strong>\/ 10 [CVE-2022-23302].<\/strong><\/li>\n<li><strong><u>Insecure File Operations vulnerability in SAP BusinessObjects Business Intelligence Platform (Web Intelligence) (3478615):<\/u><\/strong> SAP BusinessObjects Business Intelligence Platform allows an authenticated user to download files from the server, severely affecting confidentiality. This is due to the lack of restrictions in the personal data provider function. The solution is to apply a patch and create a PersonalFile_AllowList.txt file that specifies the allowed folders for personal data providers.<strong> CVSS v3 Base Score<\/strong> <span style=\"color: #ffcc00;\"><strong>7,7<\/strong><\/span><strong>\/ 10 [CVE-2024-37179].<\/strong><\/li>\n<li><strong><u>Update &#8211; Missing Authorization check in SAP PDCE (348334):<\/u><\/strong> PDCE elements do not properly verify authorization for authenticated users, allowing privilege escalation. This allows an attacker to access sensitive information, severely affecting the confidentiality of the application. As a solution, the affected functions have been disabled to restrict access. It is recommended to implement the corresponding support package or follow the remediation instructions in the security note.<strong> CVSS v3 Base Score<\/strong> <span style=\"color: #ffcc00;\"><strong>7,7<\/strong><\/span><strong>\/ 10 [CVE-2024-39592].<\/strong><\/li>\n<\/ol>\n<h3 style=\"font-weight: 400;\"><strong>Reference links<\/strong><\/h3>\n<p>Other references, from SAP and Onapsis (october):<\/p>\n<p><a href=\"https:\/\/support.sap.com\/en\/my-support\/knowledge-base\/security-notes-news\/october-2024.html\">Digital Library (sap.com)<\/a><\/p>\n<p><a href=\"https:\/\/onapsis.com\/blog\/sap-patch-day-october-2024\/\">SAP Patch Day: October 2024 &#8211; Onapsis<\/a><\/p>\n<p>&nbsp;<\/p>\n<p><strong style=\"color: #014888; font-family: inherit; font-size: 1.6rem; letter-spacing: 0em;\"><u>Resources affected<\/u><\/strong><\/p>\n<div class=\"w-post-elm post_content\">\n<ul>\n<li>SAP BusinessObjects Business Intelligence Platform, Versions &#8211; ENTERPRISE 420, 430, 440<\/li>\n<li>SAP Enterprise Project Connection, Version &#8211; 3.0<\/li>\n<li>SAP BusinessObjects Business Intelligence Platform (Web Intelligence), Version &#8211; ENTERPRISE 420, 430, 2025, ENTERPRISECLIENTTOOLS 420, 430, 2025<\/li>\n<li>SAP PDCE, Versions &#8211; S4CORE 102, 103, S4COREOP 104, 105, 106, 107, 108<\/li>\n<li>SAP Replication Server, Versions \u2013 16.0.3, 16.0.4<\/li>\n<li>SAP NetWeaver AS for Java (Destination Service). Versions &#8211; 7.50<\/li>\n<li>SAP Commerce Backoffice, Versions &#8211; HY_COM 2205, COM_CLOUD 2211<\/li>\n<li>SAP NetWeaver Enterprise Portal (KMC), Version &#8211; KMC-BC 7.5<\/li>\n<li>SAP HANA Client, Version &#8211; HDB_CLIENT 2.0<\/li>\n<li>SAP S\/4 HANA (Manage Bank Statements), Versions \u2013 S4CORE, 102, 103, 104, 105, 106, 107<\/li>\n<li>SAP NetWeaver BW (BEx Analyzer), Versions \u2013 DW4CORE 200, DW4CORE 300, DW4CORE 400, SAP_BW 700, SAP_BW 701, SAP_BW 702, SAP_BW 731, SAP_BW 740, SAP_BW 750, SAP_BW 751, SAP_BW 752, SAP_BW 753, SAP_BW 754, SAP_BW 755, SAP_BW 756, SAP_BW 757, SAP_BW 758<\/li>\n<li>SAP Student Life Cycle Management (SLcM), Versions \u2013 IS-PS-CA 617, 618, 802, 803, 804, 805, 806, 807, 808<\/li>\n<li>SAP NetWeaver Application Server for ABAP and ABAP Platform. Versions &#8211; SAP_BASIS 700, SAP_BASIS 701, SAP_BASIS 702, SAP_BASIS 731, SAP_BASIS 740, SAP_BASIS 750, SAP_BASIS 751, SAP_BASIS 752, SAP_BASIS 753, SAP_BASIS 754, SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757, SAP_BASIS 758<\/li>\n<\/ul>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Inprosec through its services, such as the SAP Security Assessment, helps its customers to improve the security levels of their SAP systems. September 2024 notes Summary and highlights of the month The total number of notes\/patches was 13, 6 fewer than last month. This month there were no HotNews, unlike last month, when there was&#8230;<\/p>\n","protected":false},"author":6,"featured_media":12195,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[95,61],"tags":[150],"class_list":["post-12193","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-sap-notes","category-sap-security-en-2","tag-sap-notes"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.3 (Yoast SEO v27.5) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>SAP Security Notes, October 2024 - Inprosec<\/title>\n<meta name=\"description\" content=\"All updates to SAP systems notes from October 2024, to stay current and improve the security levels of your SAP systems.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"SAP Security Notes, October 2024\" \/>\n<meta property=\"og:description\" content=\"All updates to SAP systems notes from October 2024, to stay current and improve the security levels of your SAP systems.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/\" \/>\n<meta property=\"og:site_name\" content=\"Inprosec\" \/>\n<meta property=\"article:published_time\" content=\"2024-10-10T07:33:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Fernando Mosquera\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Fernando Mosquera\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/\"},\"author\":{\"name\":\"Fernando Mosquera\",\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/#\\\/schema\\\/person\\\/b05a40c0c3e81b819075dd95a10532e2\"},\"headline\":\"SAP Security Notes, October 2024\",\"datePublished\":\"2024-10-10T07:33:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/\"},\"wordCount\":832,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.inprosec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/notas-sap-octubre-2024.jpg\",\"keywords\":[\"SAP Notes\"],\"articleSection\":[\"SAP Notes\",\"SAP Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/\",\"url\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/\",\"name\":\"SAP Security Notes, October 2024 - Inprosec\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.inprosec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/notas-sap-octubre-2024.jpg\",\"datePublished\":\"2024-10-10T07:33:55+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/#\\\/schema\\\/person\\\/b05a40c0c3e81b819075dd95a10532e2\"},\"description\":\"All updates to SAP systems notes from October 2024, to stay current and improve the security levels of your SAP systems.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.inprosec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/notas-sap-octubre-2024.jpg\",\"contentUrl\":\"https:\\\/\\\/www.inprosec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/notas-sap-octubre-2024.jpg\",\"width\":1200,\"height\":630},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/sap-security-notes-october-2024\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"SAP Security Notes, October 2024\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/\",\"name\":\"Inprosec\",\"description\":\"Information security is our priority.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.inprosec.com\\\/en\\\/#\\\/schema\\\/person\\\/b05a40c0c3e81b819075dd95a10532e2\",\"name\":\"Fernando Mosquera\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/199e6c54b14f5b5ddf7e11a9bb0b455c3bed7a9a1a738b7be5c2572878e69d1a?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/199e6c54b14f5b5ddf7e11a9bb0b455c3bed7a9a1a738b7be5c2572878e69d1a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/199e6c54b14f5b5ddf7e11a9bb0b455c3bed7a9a1a738b7be5c2572878e69d1a?s=96&d=mm&r=g\",\"caption\":\"Fernando Mosquera\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"SAP Security Notes, October 2024 - Inprosec","description":"All updates to SAP systems notes from October 2024, to stay current and improve the security levels of your SAP systems.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/","og_locale":"en_US","og_type":"article","og_title":"SAP Security Notes, October 2024","og_description":"All updates to SAP systems notes from October 2024, to stay current and improve the security levels of your SAP systems.","og_url":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/","og_site_name":"Inprosec","article_published_time":"2024-10-10T07:33:55+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg","type":"image\/jpeg"}],"author":"Fernando Mosquera","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Fernando Mosquera","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#article","isPartOf":{"@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/"},"author":{"name":"Fernando Mosquera","@id":"https:\/\/www.inprosec.com\/en\/#\/schema\/person\/b05a40c0c3e81b819075dd95a10532e2"},"headline":"SAP Security Notes, October 2024","datePublished":"2024-10-10T07:33:55+00:00","mainEntityOfPage":{"@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/"},"wordCount":832,"commentCount":0,"image":{"@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#primaryimage"},"thumbnailUrl":"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg","keywords":["SAP Notes"],"articleSection":["SAP Notes","SAP Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/","url":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/","name":"SAP Security Notes, October 2024 - Inprosec","isPartOf":{"@id":"https:\/\/www.inprosec.com\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#primaryimage"},"image":{"@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#primaryimage"},"thumbnailUrl":"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg","datePublished":"2024-10-10T07:33:55+00:00","author":{"@id":"https:\/\/www.inprosec.com\/en\/#\/schema\/person\/b05a40c0c3e81b819075dd95a10532e2"},"description":"All updates to SAP systems notes from October 2024, to stay current and improve the security levels of your SAP systems.","breadcrumb":{"@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#primaryimage","url":"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg","contentUrl":"https:\/\/www.inprosec.com\/wp-content\/uploads\/2024\/10\/notas-sap-octubre-2024.jpg","width":1200,"height":630},{"@type":"BreadcrumbList","@id":"https:\/\/www.inprosec.com\/en\/sap-security-notes-october-2024\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.inprosec.com\/en\/"},{"@type":"ListItem","position":2,"name":"SAP Security Notes, October 2024"}]},{"@type":"WebSite","@id":"https:\/\/www.inprosec.com\/en\/#website","url":"https:\/\/www.inprosec.com\/en\/","name":"Inprosec","description":"Information security is our priority.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.inprosec.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.inprosec.com\/en\/#\/schema\/person\/b05a40c0c3e81b819075dd95a10532e2","name":"Fernando Mosquera","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/199e6c54b14f5b5ddf7e11a9bb0b455c3bed7a9a1a738b7be5c2572878e69d1a?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/199e6c54b14f5b5ddf7e11a9bb0b455c3bed7a9a1a738b7be5c2572878e69d1a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/199e6c54b14f5b5ddf7e11a9bb0b455c3bed7a9a1a738b7be5c2572878e69d1a?s=96&d=mm&r=g","caption":"Fernando Mosquera"}}]}},"_links":{"self":[{"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/posts\/12193","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/comments?post=12193"}],"version-history":[{"count":3,"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/posts\/12193\/revisions"}],"predecessor-version":[{"id":12199,"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/posts\/12193\/revisions\/12199"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/media\/12195"}],"wp:attachment":[{"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/media?parent=12193"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/categories?post=12193"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.inprosec.com\/en\/wp-json\/wp\/v2\/tags?post=12193"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}