Exploit Prediction Scoring System (EPSS)
EPSS is a system that predicts the likelihood of a vulnerability being exploited in the wild. It uses machine learning models to predict the likelihood of a vulnerability being exploited in the wild. The system uses data from the National Vulnerability Database (NVD) and the Common Vulnerability Scoring System (CVSS) to train the models.
Top-rated Vulnerabilities from the last two days
Top 10 Vulnerabilities with the highest Delta (score shifts over the last two days)
| EPSS Scoring Date | CVE Id | Vendor | Score | CVE Published Date | Delta |
|---|---|---|---|---|---|
| Jan. 7, 2026 | CVE-2009-1765 | Pluck cms | 52.01 | May 22, 2009, 6:30 p.m. |
45.62 |
| Jan. 7, 2026 | CVE-2009-1774 | Strawberry | 46.56 | May 22, 2009, 6:30 p.m. |
31.55 |
| Jan. 7, 2026 | CVE-2022-27924 | Zimbra | 91.96 | April 21, 2022, 12:15 a.m. |
30.48 |
| Jan. 7, 2026 | CVE-2022-27924 | Synacor | 91.96 | April 21, 2022, 12:15 a.m. |
30.48 |
| Jan. 7, 2026 | CVE-2003-0015 | Freebsd | 37.75 | Feb. 7, 2003, 5 a.m. |
-25.11 |
| Jan. 7, 2026 | CVE-2003-0015 | Cvs | 37.75 | Feb. 7, 2003, 5 a.m. |
-25.11 |
| Jan. 7, 2026 | CVE-2009-1815 | Sonicspot | 28.47 | May 29, 2009, 4:30 p.m. |
18.16 |
| Jan. 7, 2026 | CVE-2022-46175 | Fedoraproject | 54.08 | Dec. 24, 2022, 4:15 a.m. |
17.29 |
| Jan. 7, 2026 | CVE-2022-46175 | Json5 | 54.08 | Dec. 24, 2022, 4:15 a.m. |
17.29 |
| Jan. 7, 2026 | CVE-2009-1644 | Sorinara | 26.08 | May 15, 2009, 3:30 p.m. |
16.88 |