EPSS (Exploit Prediction Scoring System) provides a standardized metric to calculate the chances of exploitation of a disclosed CVE entry. It uses attributes of the vulnerability and the affected products. Similar to our unique exploit price calculation this allows organizations to determine all vulnerabilities which are exposed and need to be addressed with increased priority.
All entries provide the most recent EPSS calculations which include the score and the percentile information. This data is also available via API.
Interested in the pricing of exploits?
See the underground prices here!