SC-DEPENDENCY-CONFUSION-BIRSAN-2021
npm · Dependency confusion (Birsan research)
Summary
In February 2021 researcher Alex Birsan published the dependency confusion technique, exploiting how package managers (npm, PyPI, RubyGems) resolve a public package over a private one of the same name with a higher version. By publishing packages matching leaked internal package names to public registries, he achieved code execution on internal build systems at more than 35 companies including Apple, Microsoft, PayPal, Shopify, Netflix, Tesla and Uber. The research was authorized and earned over $130,000 in bug bounties, reshaping enterprise understanding of supply-chain namespace risk.
References
Related vulnerabilities
All Supply chain →- HIGHPYPI-TORCHTRITON-2022
Between December 25 and December 30, 2022, a dependency confusion attack hit PyTorch-nightly. An attacker uploaded a malicious package named 'torchtriton' to the public PyPI index with a higher version than the legitimate one shipped on PyTorch's own index; because pip prioritized PyPI, the malicious package was installed by default. The payload collected system fingerprint data (IP, hostname, username, working directory), read sensitive files such as /etc/passwd and SSH keys, and exfiltrated them. PyTorch renamed the dependency to 'pytorch-triton' and reserved a dummy PyPI package to prevent recurrence.
- MEDIUMGHSA-HHPQ-7WG4-36JM
CakePHP Authentication: Open redirect weakness via backslash bypass
- CRITICALGHSA-8FQ9-273G-6MRG
Avo: Missing Authorization in Avo Association Attach Endpoint Allows Unauthorized Relationship Manipulation and Privilege Escalation
- MEDIUMGHSA-X2QC-CMH9-F4HF
Deno: Denial of service via non-ASCII bytes in WebSocket response headers
- CRITICALGHSA-2F55-G35J-5JMF
HAPI FHIR: XXE in XsltUtilities.saxonTransform via unhardened Saxon TransformerFactory
- HIGHGHSA-FXJ4-P9XP-37V5
HAPI FHIR: Incomplete fix for CVE-2026-45367: DSTU2 FHIRPathEngine.matches() missing RegexTimeout protection allows ReDoS