-
Security updates
-
Product news
-
Next-Gen Vulnerability Management
-
Getting started
-
General
-
Operating status
-
System & Network Security
-
Web Application Security
-
Cloud Security
-
API Security
-
Phishing Simulation & Awareness Training
-
Attack Surface Management
-
Scanner Appliance
-
Device Agent
-
On-premise platform deployment
-
Asset management
-
Vulnerability manager
-
Reports
-
Digest reports
-
Organizer
-
Continuous monitoring
-
Integrations
-
Platform API
-
Remediation
-
Users
-
PCI DSS ASV scans
-
Terms & conditions
-
Dashboard
What is the Exploit Prediction Scoring System (EPSS)?
The Exploit Prediction Scoring System (EPSS) is a data-driven framework designed to estimate the likelihood (probability) that a software vulnerability will be exploited in the wild. It helps security teams effectively prioritize which vulnerabilities to remediate first.
EPSS assigns a numerical score ranging from 0 to 1 (0% to 100%). A higher score indicates a greater likelihood of exploitation. Specifically, the score reflects the probability that a particular vulnerability (identified by its CVE ID) will be exploited within the next 30 days.
To filter and see your ESPSS score within your Security Center, do the following:
- Log in to Security Center.
- Go to Vulnerability Manager> Unified view.
- Click Filter to expand the filters.
- Select a range of the EPSS score to only see the vulnerabilities that fall within the selected EPSS score range.
- Click on a vulnerability to reveal more information, and then navigate to the Details section to see its exact EPSS score.
- Done!