EPSS
The Exploit Prediction Scoring System (EPSS) object describes the estimated probability a vulnerability will be exploited. EPSS is a community-driven effort to combine descriptive information about vulnerabilities (CVEs) with evidence of actual exploitation in-the-wild. (EPSS).
Attributes
| Caption | Name | Type | Description |
|---|---|---|---|
| Created Time | created_time |
Timestamp | The timestamp indicating when the EPSS score was calculated. |
| EPSS Percentile | percentile |
Float | The EPSS score's percentile representing relative importance and ranking of the score in the larger EPSS dataset. |
| Raw Data | raw_data |
JSON | The event data as received from the event source. |
| Record ID | record_id |
String | Unique identifier for the object |
| EPPS Score | score |
String | The EPSS score representing the probability [0-1] of exploitation in the wild in the next 30 days (following score publication). |
| Unmapped Data | unmapped |
Unmapped[] | The attributes that are not mapped to the event schema. The names and values of those attributes are specific to the event source. |
| Version | version |
String | The version of the EPSS model used to calculate the score. |
Relationships
Inbound Relationships
These objects and events reference EPSS in their attributes:
Outbound Relationships
EPSS references the following objects and events in its attributes:
This page describes qdm-1.3.2+ocsf-1.3.0
Updated about 1 month ago