CWE-703: Improper Check or Handling of Exceptional Conditions
The product does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the product.
Last updated
Overview
CWE-703 (Improper Check or Handling of Exceptional Conditions) is a pillar-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
Real-world CVEs
139 recorded CVEs are caused by CWE-703 (Improper Check or Handling of Exceptional Conditions), including 3 in CISA's KEV (Known Exploited Vulnerabilities) catalog. KEVs are shown first. 18 new CWE-703 CVEs have been recorded so far in 2026 (27 in 2025).