EPSS

epss

The Exploit Prediction Scoring System (EPSS) object describes the estimated probability a vulnerability will be exploited. EPSS is a community-driven effort to combine descriptive information about vulnerabilities (CVEs) with evidence of actual exploitation in-the-wild. (EPSS).

Attributes

Caption	Name	Type	Description
Created Time	`created_time`	Timestamp	The timestamp indicating when the EPSS score was calculated.
EPSS Percentile	`percentile`	Float	The EPSS score's percentile representing relative importance and ranking of the score in the larger EPSS dataset.
Raw Data	`raw_data`	JSON	Group:`context` The event data as received from the event source.
Record ID	`record_id`	String	Group:`primary` Unique identifier for the object
EPPS Score	`score`	String	The EPSS score representing the probability [0-1] of exploitation in the wild in the next 30 days (following score publication).
Unmapped	`unmapped`	Unmapped[]	Data from the source that was not mapped into the schema.
Version	`version`	String	The version of the EPSS model used to calculate the score.

Relationships

Inbound Relationships

These objects and events reference EPSS in their attributes:

Outbound Relationships

EPSS references the following objects and events in its attributes:

Unmapped

This page describes ocsf-1.4.0

Updated 10 days ago