CVPR 2025 Open Access Repository

The 5th Workshop of Adversarial Machine Learning on Computer Vision: Foundation Models + X

Trustworthy Multi-UAV Collaboration: A Self-Supervised Framework for Explainable and Adversarially Robust Decision-Making: Yuwei Chen,

Shiyong Chu; [pdf]
[bibtex]
@InProceedings{Chen_2025_CVPR, author = {Chen, Yuwei and Chu, Shiyong}, title = {Trustworthy Multi-UAV Collaboration: A Self-Supervised Framework for Explainable and Adversarially Robust Decision-Making}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3550-3561} }
Probing Vulnerabilities of Vision-LiDAR Based Autonomous Driving Systems: Siwei Yang,

Zeyu Wang,

Diego Ortiz,

Luis Burbano,

Murat Kantarcioglu,

Alvaro Cardenas,

Cihang Xie; [pdf]
[bibtex]
@InProceedings{Yang_2025_CVPR, author = {Yang, Siwei and Wang, Zeyu and Ortiz, Diego and Burbano, Luis and Kantarcioglu, Murat and Cardenas, Alvaro and Xie, Cihang}, title = {Probing Vulnerabilities of Vision-LiDAR Based Autonomous Driving Systems}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3600-3608} }
Attacking Attention of Foundation Models Disrupts Downstream Tasks: Hondamunige Prasanna Silva,

Federico Becattini,

Lorenzo Seidenari; [pdf]
[bibtex]
@InProceedings{Silva_2025_CVPR, author = {Silva, Hondamunige Prasanna and Becattini, Federico and Seidenari, Lorenzo}, title = {Attacking Attention of Foundation Models Disrupts Downstream Tasks}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3573-3582} }
Defending Against Frequency-Based Attacks with Diffusion Models: Fatemeh Amerehi,

Patrick Healy; [pdf]
[bibtex]
@InProceedings{Amerehi_2025_CVPR, author = {Amerehi, Fatemeh and Healy, Patrick}, title = {Defending Against Frequency-Based Attacks with Diffusion Models}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3562-3572} }
Task-Agnostic Attacks Against Vision Foundation Models: Brian Pulfer,

Yury Belousov,

Vitaliy Kinakh,

Teddy Furon,

Slava Voloshynovskiy; [pdf] [supp]
[bibtex]
@InProceedings{Pulfer_2025_CVPR, author = {Pulfer, Brian and Belousov, Yury and Kinakh, Vitaliy and Furon, Teddy and Voloshynovskiy, Slava}, title = {Task-Agnostic Attacks Against Vision Foundation Models}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3609-3620} }
EL-Attack: Explicit and Latent Space Hybrid Optimization based General and Effective Attack for Autonomous Driving Trajectory Prediction: Xuesong Bai,

Changhang Tian,

Wei Xia,

Zhenshu Ma,

Haiyang Yu,

Yilong Ren; [pdf] [supp]
[bibtex]
@InProceedings{Bai_2025_CVPR, author = {Bai, Xuesong and Tian, Changhang and Xia, Wei and Ma, Zhenshu and Yu, Haiyang and Ren, Yilong}, title = {EL-Attack: Explicit and Latent Space Hybrid Optimization based General and Effective Attack for Autonomous Driving Trajectory Prediction}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3621-3629} }
Towards Evaluating the Robustness of Visual State Space Models: Hashmat Shadab Malik,

Fahad Shamshad,

Muzammal Naseer,

Karthik Nandakumar,

Fahad Shahbaz Khan,

Salman Khan; [pdf] [supp]
[bibtex]
@InProceedings{Malik_2025_CVPR, author = {Malik, Hashmat Shadab and Shamshad, Fahad and Naseer, Muzammal and Nandakumar, Karthik and Khan, Fahad Shahbaz and Khan, Salman}, title = {Towards Evaluating the Robustness of Visual State Space Models}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3583-3592} }
Attention-Aware Temporal Adversarial Shadows on Traffic Sign Sequences: Pedram MohajerAnsari,

Amir Salarpour,

David Fernandez,

Cigdem Kokenoz,

Bing Li,

Mert D. Pesé; [pdf]
[bibtex]
@InProceedings{MohajerAnsari_2025_CVPR, author = {MohajerAnsari, Pedram and Salarpour, Amir and Fernandez, David and Kokenoz, Cigdem and Li, Bing and Pes\'e, Mert D.}, title = {Attention-Aware Temporal Adversarial Shadows on Traffic Sign Sequences}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3630-3638} }
FullCycle: Full Stage Adversarial Attack For Reinforcement Learning Robustness Evaluation: Zhenshu Ma,

Xuan Cai,

Changhang Tian,

Yuqi Fan,

Kemou Jiang,

Gangfu Liu,

Xuesong Bai,

Aoyong Li,

Yilong Ren,

Haiyang Yu; [pdf]
[bibtex]
@InProceedings{Ma_2025_CVPR, author = {Ma, Zhenshu and Cai, Xuan and Tian, Changhang and Fan, Yuqi and Jiang, Kemou and Liu, Gangfu and Bai, Xuesong and Li, Aoyong and Ren, Yilong and Yu, Haiyang}, title = {FullCycle: Full Stage Adversarial Attack For Reinforcement Learning Robustness Evaluation}, booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference (CVPR) Workshops}, month = {June}, year = {2025}, pages = {3593-3599} }