Vulnerability details - Check overview

The complete detailed list of checks that were executed during the scan may be accessed by pressing the "Check overview" button in the "Vulnerability details" screen:

Accessing Check overview

A list of checks is shown in the same tab. The list is sorted descending on the risk level- and ascending on mitigation effort columns.

Check overview

The list may be sorted differently by the user by clicking on the column header. There are a number of display-related settings that may be changed by clicking on the "Display settings" icon.

Display-related settings

Display-related settings

The display type dropdown menu has 3 available list formats:

  • List : the default overview, a standard list without hierarchy levels

  • Tree : a hierarchical view containing the group and subgroup headers of all checks as well as the checks themselves

  • Group/Subgroup: a collapsible hierarchical view containing the group and subgroup headers

The Risk weighting factor may be changed to favor either Impact and Likelihood. When the slider is adjusted, the relative weights of Impact and Likelihood values are changed, the Risk level is recalculated and the check overview is re-sorted.

The check result selection determines which checks will be shown in the list. For example it is also possible to view only the checks that passed by selecting "Pass".

All these user settings may be saved as a default setting. The next time the user accesses the check overview, these settings will be applied automatically.

You may find out why a certain check failed by selecting the display icon at the start of a record:

Check result

In the example above, a check was done on the value of SAP parameter login/min_password_lng (minimum length of a SAP password). The check failed because the value equals 6, allowing for passwords of only 6 characters.

Check information

Check information - Check tab

The check tab contains a description of the check and shows some of its properties: whether it is client-dependent or instance-dependent and which platform layer it belongs to.

The check parameters tab shows the reference value. In this case a check was made whether the SAP parameter login/password_lng contained a value larger or equal than 10.

Check information - Check parameters tab

The vulnerability tab contains a short description of the vulnerability:

Check information - Vulnerability tab

The solution tab shows a a proposed best practice to mitigate this specific risk:

Check information - Solution tab

The references tab shows links to relevant SAP OSS Notes and SAP Help pages:

Check information - references tab