EPSS

epss

The Exploit Prediction Scoring System (EPSS) object describes the estimated probability a vulnerability will be exploited. EPSS is a community-driven effort to combine descriptive information about vulnerabilities (CVEs) with evidence of actual exploitation in-the-wild. (EPSS).

Attributes

CaptionNameTypeDescription
Created Timecreated_timeTimestampThe timestamp indicating when the EPSS score was calculated.
EPSS PercentilepercentileFloatThe EPSS score's percentile representing relative importance and ranking of the score in the larger EPSS dataset.
Raw Dataraw_dataJSONGroup:context

The event data as received from the event source.
Record IDrecord_idStringGroup:primary

Unique identifier for the object
EPPS ScorescoreStringThe EPSS score representing the probability [0-1] of exploitation in the wild in the next 30 days (following score publication).
UnmappedunmappedUnmapped[]Data from the source that was not mapped into the schema.
VersionversionStringThe version of the EPSS model used to calculate the score.

Relationships

EPSS shown in context

Inbound Relationships

These objects and events reference EPSS in their attributes:

Outbound Relationships

EPSS references the following objects and events in its attributes:

This page describes qdm-1.5.1+ocsf-1.6.0