EPSS — CVE-2026-28987
0.000 · 15.7th percentile
Very low probability of exploitation in the next 30 days; routine patching cadence is appropriate. 16th percentile — 15.7% of CVEs in the catalogue have a lower EPSS than this one.
Current EPSS score
Score: 0.000 · Percentile: 15.7th
Scored at 2026-06-05.
Very low probability of exploitation in the next 30 days; routine patching cadence is appropriate. 16th percentile — 15.7% of CVEs in the catalogue have a lower EPSS than this one.
30-day trend
EPSS over last 30 days · oldest: 0.000 · newest: 0.000 · change: +0.000
How to read this
The score is the FIRST.org-modeled probability of exploitation in the next 30 days. The percentile ranks this CVE against every other scored entry in the catalogue. Pair both with CVSS (inherent severity) and CISA KEV (confirmed active exploitation) before making patching decisions — EPSS is one of three signals, not a verdict on its own. See the EPSS explainer for the prioritisation matrix.
See also
- Canonical CVE record:
CVE-2026-28987— severity, affected products, references, and PoCs. - Definition + examples: EPSS in the glossary.
- What it means in context: EPSS explainer.