What is SAP CRM?
SAP Customer Relationship Management (CRM) system is one of the most widely-used.
Its a part of SAP Business Suite, which is intended for storing and processing critical business data.
The main purpose of SAP CRM is to process everything that’s anyhow connected with clients, leads and
contracts. Compromising this system could cause significant reputational and material losses to an
organization. Highly alarming is the fact that this system is accessible via the Internet, which makes
it perfect for remote attacks.
SAP SRM Security Risks
There are multiple risks related to SAP CRM systems. Some of them are listed
Client data theft
Unauthorized access to SAP CRM constitutes a threat to information about client
lists, prices, contact points etc. If compromised this data can be used by competitors to win over
customers with lower priced bids and over a long term ruin the whole business.
Unauthorized changes in SAP CRM can negatively impact relationships with customers.
The possible outcomes are contract execution delays, substituted business correspondence or even revised
SAP CRM Vulnerabilities
SAP NetWeaver Application Server ABAP (AS ABAP) is a main platform for SAP CRM, SAP
NetWeaver Application Server Java (AS Java) serves as a backend and SAP Enterprise Portal (EP) is a
frontend. This means that SAP CRM is potentially vulnerable to the risks of both ABAP Platform (more
than 1000) and JAVA platform (over 500). In particular, there are approximately 330 vulnerabilities
specific to different modules of SAP CRM.
How can our software be of help to ensure SAP CRM Security?
ERPScan Security Monitoring Suite for SAP contains a wide range of checks aimed
to discover security issues specific to SAP CRM Systems. The solution’s leading position in the field
has been confirmed by multiple awards. This is the only SAP SE-certified solution on the market to
identify, analyze and remediate all SAP security issues and to enable powerful protection against
cyber-attacks and fraud. It embraces all the three tiers of SAP security: vulnerability management,
source code review for custom programs and segregation of duties (SoD).