Class: Epss

The Exploit Prediction Scoring System (EPSS) object describes the estimated

probability a vulnerability will be exploited. EPSS is a community-driven

effort to combine descriptive information about vulnerabilities (CVEs) with

evidence of actual exploitation in-the-wild. (<a target='_blank'

href='https://www.first.org/epss/'>EPSS).

 classDiagram
    class Epss
    click Epss href "../Epss/"
      Object <|-- Epss
        click Object href "../Object/"

      Epss : created_time

      Epss : percentile

      Epss : score

      Epss : version

Inheritance

OcsfObject
- Object
  - Epss

Slots

Name	Cardinality and Range	Description	Inheritance
created_time	0..1 recommended TimestampT	The timestamp indicating when the EPSS score was calculated	direct
percentile	0..1 Float	The EPSS score's percentile representing relative importance and ranking of t...	direct
score	1 String	The EPSS score representing the probability [0-1] of exploitation in the wild	direct
version	0..1 recommended String	The version of the EPSS model used to calculate the score	direct

Usages

used by	used in	type	used
Cve	epss	range	Epss

In Subsets

objects_subset

Aliases

EPSS

Identifier and Mapping Information

Schema Source

from schema: https://w3id.org/lmodel/ocsf

Mappings

Mapping Type	Mapped Value
self	ocsf:Epss
native	ocsf:Epss
related	kev_catalog:KevEntry, nvd:NVDEntry, core:Impact

LinkML Source

Direct

name: Epss
description: 'The Exploit Prediction Scoring System (EPSS) object describes the estimated

  probability a vulnerability will be exploited. EPSS is a community-driven

  effort to combine descriptive information about vulnerabilities (CVEs) with

  evidence of actual exploitation in-the-wild. (<a target=''_blank''

  href=''https://www.first.org/epss/''>EPSS</a>).'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- EPSS
related_mappings:
- kev_catalog:KevEntry
- nvd:NVDEntry
- core:Impact
is_a: Object
slots:
- created_time
- percentile
- score
- version
slot_usage:
  created_time:
    name: created_time
    description: The timestamp indicating when the EPSS score was calculated.
    recommended: true
  score:
    name: score
    description: 'The EPSS score representing the probability [0-1] of exploitation
      in the wild

      in the next 30 days (following score publication).'
    required: true
  version:
    name: version
    description: The version of the EPSS model used to calculate the score.
    recommended: true

Induced

name: Epss
description: 'The Exploit Prediction Scoring System (EPSS) object describes the estimated

  probability a vulnerability will be exploited. EPSS is a community-driven

  effort to combine descriptive information about vulnerabilities (CVEs) with

  evidence of actual exploitation in-the-wild. (<a target=''_blank''

  href=''https://www.first.org/epss/''>EPSS</a>).'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- EPSS
related_mappings:
- kev_catalog:KevEntry
- nvd:NVDEntry
- core:Impact
is_a: Object
slot_usage:
  created_time:
    name: created_time
    description: The timestamp indicating when the EPSS score was calculated.
    recommended: true
  score:
    name: score
    description: 'The EPSS score representing the probability [0-1] of exploitation
      in the wild

      in the next 30 days (following score publication).'
    required: true
  version:
    name: version
    description: The version of the EPSS model used to calculate the score.
    recommended: true
attributes:
  created_time:
    name: created_time
    description: The timestamp indicating when the EPSS score was calculated.
    from_schema: https://w3id.org/lmodel/ocsf
    aliases:
    - Created Time
    rank: 1000
    alias: created_time
    owner: Epss
    domain_of:
    - Osint
    - RelatedEvent
    - Sbom
    - Scim
    - Session
    - Sso
    - Token
    - Whois
    - Resource
    - Advisory
    - AuthenticationToken
    - Certificate
    - Cve
    - Database
    - Databucket
    - DigitalSignature
    - Enrichment
    - Epss
    - File
    - FindingObject
    - FindingInfo
    - Job
    - KbArticle
    - LdapPerson
    - ProcessEntity
    - Table
    - Device
    range: TimestampT
    recommended: true
  percentile:
    name: percentile
    description: 'The EPSS score''s percentile representing relative importance and
      ranking of the

      score in the larger EPSS dataset.'
    from_schema: https://w3id.org/lmodel/ocsf
    aliases:
    - EPSS Percentile
    rank: 1000
    alias: percentile
    owner: Epss
    domain_of:
    - Epss
    range: float
  score:
    name: score
    description: 'The EPSS score representing the probability [0-1] of exploitation
      in the wild

      in the next 30 days (following score publication).'
    from_schema: https://w3id.org/lmodel/ocsf
    aliases:
    - Reputation Score
    rank: 1000
    alias: score
    owner: Epss
    domain_of:
    - Reputation
    - Epss
    range: string
    required: true
  version:
    name: version
    description: The version of the EPSS model used to calculate the score.
    from_schema: https://w3id.org/lmodel/ocsf
    aliases:
    - Version
    rank: 1000
    alias: version
    owner: Epss
    domain_of:
    - Os
    - Package
    - RpcInterface
    - Sbom
    - Scim
    - SoftwareComponent
    - Tls
    - Agent
    - AiModel
    - Analytic
    - Api
    - ApplicationObject
    - Attack
    - Certificate
    - Check
    - CisControl
    - CisCsc
    - Cvss
    - D3fend
    - Databucket
    - Epss
    - Extension
    - Feature
    - File
    - HttpRequest
    - Logger
    - ManagedEntity
    - Metadata
    - Policy
    - Product
    - ResourceDetails
    - Rule
    - Service
    - NtpActivity
    range: string
    recommended: true