Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: rhacs, rhacs-policy
Labels:
None

Target Version:

rhacs-4.11.0
Activity Type:
Product / Portfolio Work
Status Summary:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Products:
None
Hierarchy Progress Bar:
None

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Review Complete:
None
PX Impact Score:
PX Impact Range:
None
PX Priority Data:
None
PX Technical Impact:
None
PX Technical Impact Notes:
None
PX Scheduling Request:
None

Having EPSS field in security policies, would help be able to create a policy which combines severity and EPSS value (CRITICAL and EPSS > 50%).

Customer would like to be able use the EPSS value in their policies, so that they can create a policies such as:

"Critical CVE and EPSS value greater than 50%" or
"CVSS greater than 8 and EPSS greater than 25%".

This would help the customer:
1.Be able to focus on CVE's which are more likely to get exploited
2.Save Time and Money with creating an affective policy which combines severity and EPSS value (CRITICAL and EPSS > 50%).

is incorporated by

ROX-30427 Add EPSS field in policy engine and in UI

Assignee:: Boaz Michaely

Reporter:: Daniel Lowe

Need Info From:: None

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2025/07/31 3:33 PM

Updated:: 2025/09/22 6:48 PM

Target start:: None

Target end:: None

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates