marshmallow — CVE history (PyPI)
marshmallow
1 CVEs affect the marshmallow PyPI package (highest CVSS 5.3). Latest disclosed: 2025-12-22. Full CVE history sourced from NVD.
Summary
- Package
marshmallow(PyPI)- Total CVEs
1- Actively exploited (CISA KEV)
- 0
- Highest CVSS
5.3- Latest disclosed
- 2025-12-22
Recent CVEs (top 1)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-68480 | Medium | 5.3 | — | 2025-12-22 | Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. |
All-time worst (top 1 by CVSS)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-68480 | Medium | 5.3 | — | 2025-12-22 | Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. |