Base weakness
Draft
CWE-448: Obsolete Feature in UI
A UI function is obsolete and the product does not warn the user.
Log in
A UI function is obsolete and the product does not warn the user.
Last updated
CWE-448 (Obsolete Feature in UI) is a base-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
2 recorded CVEs are caused by CWE-448 (Obsolete Feature in UI). The highest-severity and most recent are shown first. 0 new CWE-448 CVEs have been recorded so far in 2026 (1 in 2025).
What can happen when CWE-448 is exploited.
Quality Degradation, Varies by Context
Affects: Other
Typically introduced during these phases of the software lifecycle.
Practical mitigations for CWE-448, grouped by where in the lifecycle they apply.
Remove the obsolete feature from the UI. Warn the user that the feature is no longer supported.
Common questions about CWE-448.
A UI function is obsolete and the product does not warn the user.
2 recorded CVEs are attributed to CWE-448, including CVE-2022-32258, CVE-2025-12517.
Remove the obsolete feature from the UI. Warn the user that the feature is no longer supported.
Exploiting CWE-448 can lead to: Quality Degradation, Varies by Context.
2 recorded CVEs are caused by CWE-448; none are currently in CISA's KEV catalog of actively exploited flaws.
Weakness data is sourced from the MITRE CWE catalog (v4.20). CVE associations are aggregated and kept current by RadicalNotion.AI.
Get alerted the moment a new CWE-448 vulnerability affects your stack, with AI-written analysis, severity context, and remediation guidance.