CWE-1059: Insufficient Technical Documentation

Home
Weaknesses (CWE)
CWE-1118

RadicalNotion.AI

We do not sell or share your personal information

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log inLog in

Home
Weaknesses (CWE)
CWE-1118

CWE-1118: Insufficient Documentation of Error Handling Techniques

Base weakness

Incomplete

CWE-1118: Insufficient Documentation of Error Handling Techniques

The documentation does not sufficiently describe the techniques that are used for error handling, exception processing, or similar mechanisms.

Last updated May 1, 2026

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

Documentation may need to cover error handling techniques at multiple layers, such as module, executable, compilable code unit, or callable.

Real-world CVEs

1 recorded CVEs are caused by CWE-1118 (Insufficient Documentation of Error Handling Techniques). The highest-severity and most recent are shown first.

CVE-2022-1459
High · CVSS 8.3 · EPSS 58th
2022-04-25

Common consequences

What can happen when CWE-1118 is exploited.

Reduce Maintainability

Affects: Other

How it happens

When it is introduced

Typically introduced during these phases of the software lifecycle.

Documentation

Related weaknesses

How this weakness relates to others in the CWE hierarchy.

Parent

On this page

Overview
Real-world CVEs
Common consequences
How it happens
Related weaknesses
FAQ
References

CWE-1059: Insufficient Technical Documentation

Frequently asked questions

Common questions about CWE-1118.

What is CWE-1118?

The documentation does not sufficiently describe the techniques that are used for error handling, exception processing, or similar mechanisms.

What CVEs are caused by CWE-1118?

1 recorded CVEs are attributed to CWE-1118, including CVE-2022-1459.

What are the consequences of CWE-1118?

Exploiting CWE-1118 can lead to: Reduce Maintainability.

Is CWE-1118 actively exploited?

1 recorded CVEs are caused by CWE-1118; none are currently in CISA's KEV catalog of actively exploited flaws.

References

MITRE CWE definition (CWE-1118) (opens in a new tab)
CWE-1118 vulnerabilities on NVD (opens in a new tab)
Learn: What is a CWE?

Weakness data is sourced from the MITRE CWE catalog (v4.20). CVE associations are aggregated and kept current by RadicalNotion.AI.

Stay ahead of CWE-1118

Get alerted the moment a new CWE-1118 vulnerability affects your stack, with AI-written analysis, severity context, and remediation guidance.

Start free See pricing