Unknown · Paperless-Ngx · CVE-2024-35184
**Name of the Vulnerable Software and Affected Versions**
Paperless-ngx versions 2.5.0 through 2.8.5
**Description**
The issue concerns remote user authentication in a document management system, allowing API access even when API access is explicitly disabled.
**Recommendations**
For versions 2.5.0 through 2.8.5, update to version 2.8.6 to resolve the issue.