Nick Wojciechowski

**Name of the Vulnerable Software and Affected Versions** Azure Logic Apps (affected versions not specified) **Description** Insufficiently protected credentials allow an authorized attacker to elevate privileges over a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Azure Functions (affected versions not specified) **Description** The issue is related to the improper verification of cryptographic signatures in Microsoft Azure Functions, allowing an authorized attacker to execute code over a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) GhostScript versions prior to 9.50 **Description** The issue occurs due to improper input validation when parsing PostScript code, resulting in a remote code execution risk. An omitted execution parameter allows for the exploitation of this issue, which may lead to the complete compromise of the vulnerable system. Successful exploitation can enable a remote attacker to execute arbitrary code. **Recommendations** For Moodle, update GhostScript to version 9.50 or later to resolve the issue. As a temporary workaround, consider disabling the parsing of PostScript code until a patch is available. Restrict access to the PostScript parsing functionality to minimize the risk of exploitation.