Exploit Prediction Scoring System (EPSS)
EPSS is a system that predicts the likelihood of a vulnerability being exploited in the wild. It uses machine learning models to predict the likelihood of a vulnerability being exploited in the wild. The system uses data from the National Vulnerability Database (NVD) and the Common Vulnerability Scoring System (CVSS) to train the models.
Top-rated Vulnerabilities from the last two days
Top 10 Vulnerabilities with the highest Delta (score shifts over the last two days)
| EPSS Scoring Date | CVE Id | Vendor | Score | CVE Published Date | Delta |
|---|---|---|---|---|---|
| Jan. 6, 2026 | CVE-2009-1551 | Qt cute | 85.24 | May 6, 2009, 3:30 p.m. |
53.67 |
| Jan. 6, 2026 | CVE-1999-0107 | Apache | 38.22 | Dec. 30, 1997, 5 a.m. |
22.62 |
| Jan. 6, 2026 | CVE-2009-4754 | Mercuryaudio | 28.47 | March 29, 2010, 6:30 p.m. |
18.39 |
| Jan. 6, 2026 | CVE-2007-6254 | Sap | 32.18 | March 20, 2008, 12:44 a.m. |
14.28 |
| Jan. 6, 2026 | CVE-2007-6254 | Sap | 32.18 | March 20, 2008, 12:44 a.m. |
14.28 |
| Jan. 6, 2026 | CVE-2022-40300 | Zohocorp | 38.92 | Sept. 16, 2022, 11:15 p.m. |
-14.03 |
| Jan. 6, 2026 | CVE-2022-40300 | Zohocorp | 38.92 | Sept. 16, 2022, 11:15 p.m. |
-14.03 |
| Jan. 6, 2026 | CVE-2022-40300 | Zohocorp | 38.92 | Sept. 16, 2022, 11:15 p.m. |
-14.03 |
| Jan. 6, 2026 | CVE-2009-4761 | Mini stream | 19.97 | March 29, 2010, 6:30 p.m. |
13.56 |
| Jan. 6, 2026 | CVE-2009-4759 | Joric | 17.24 | March 29, 2010, 6:30 p.m. |
12.27 |