How secure are your custom ABAP codes?

As every information system , your company’s SAP systems are also under miscellaneous security risks.

For example ; there are code weaknesses which lets information theft , unauthorized access to specific data & transactions and codes which are open to attacks in “injection” class.

In your SAP systems,

● Is it possible to access an important data or transaction without related authority checks via a custom (Z) program ?

● Is there any information theft in your SAP systems because of a custom function or program ?

● Have you ever scanned your custom codes againist these risks ?

Your company’s softwares should be updated frequently againist these risks.

SAP standard package is already protected by up to date security patches.

You can check updated security notes & patches in SAP service center (service.sap.com)

However this security notes & patches don’t comprise custom (Z) developments.

Vulnerability Sensor scans all code vulnerabilities in your custom developments and presents a report in a sequence of importance.

Also it has a feature as auto-correction of ABAP codes to add extra security controls for specific security issues.