Palo Alto Networks has released patches addressing 13 vulnerabilities in its PAN-OS software, according to SecurityWeek. The flaws span multiple categories, including buffer overflow, denial-of-service (DoS), command injection, server-side request forgery (SSRF), and authentication bypass.

Of the 13 vulnerabilities, several are rated as high severity. While specific CVSS scores were not disclosed in the report, the presence of authentication bypass flaws suggests attackers could potentially gain unauthorized access to affected systems without valid credentials.

Technical details remain limited, but the range of vulnerability types indicates a broad attack surface. Buffer overflow and command injection flaws could allow remote code execution, while SSRF vulnerabilities might enable attackers to perform internal network reconnaissance from compromised devices.

Organizations running PAN-OS should apply the latest patches immediately to mitigate risk. No evidence of active exploitation has been reported yet, but SecurityWeek notes that some flaws could be exploited remotely without authentication.

The disclosures follow Palo Alto Networks' regular security update cycle. Users are advised to review the official advisory and prioritize patching, especially for internet-facing firewalls and other critical infrastructure running the affected software.