Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

Finland reports territorial violation by drones, likely linked to Ukraine

Estonia, Latvia and Lithuania said last week that several Ukrainian drones had crashed on their territory after going astray ...
IEEE

VarifocalNet: An IoU-aware Dense Object Detector

Abstract: Accurately ranking the vast number of candidate detections is crucial for dense object detectors to achieve high performance. Prior work uses the classification score or a combination of ...
IEEE

Extended Feature Pyramid Network for Small Object Detection

Abstract: Small object detection remains an unsolved challenge because it is hard to extract the information of small objects with only a few pixels. While scale-level corresponding detection in ...