Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

JavaScript devs beware: this popular NPM package has been compromised by attackers

An extremely popular NPM package used in many JavaScript projects has been compromised and can wreak havoc on your machine if ...
IEEE

Fast Wideband Monostatic Scattering Analysis Method Combining Macro-Block Characteristic Basis Function Method With Improved FIR for Freestanding Large-Scale Finite Periodic Arrays

Abstract: An efficient numerical method for the wideband scattering analysis of the freestanding large-scale finite periodic array is presented using the macro block-characteristic basis function ...
IEEE

Exploring the Advantages of Sparse Arrays in Near-Field XL-MIMO Systems: Beam Analysis and EDoF Function

Abstract: This paper investigates near-field extremely large-scale multiple-input multiple-output (XL-MIMO) systems with sparse uniform planar arrays (UPAs). Based on the Green’s function-based ...