CVE-2025-41096 is an authorization bypass vulnerability classified under CWE-639 (Authorization Bypass Through User-Controlled Key) affecting BOLD Workplanner, a product by GLOBAL PLANNING SOLUTIONS S.L (GPS). The flaw exists in versions prior to 2.5.25 (specifically 2.5.24), where the application fails to properly validate user input related to internal identifiers referencing contract details. This lack of validation allows an authenticated user to manipulate these identifiers (IDOR) and gain unauthorized access to sensitive contract date information that should be restricted. The vulnerability does not require elevated privileges beyond authentication, nor does it require user interaction, making it relatively easy to exploit remotely over the network. The CVSS 4.0 vector indicates network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:L), no user interaction (UI:N), and high impact on confidentiality (VC:H), with no impact on integrity or availability. Although no public exploits have been reported yet, the vulnerability poses a significant risk to confidentiality of contract data, which could lead to information leakage and potential business or legal repercussions. The vulnerability was reserved in April 2025 and published in September 2025. No official patches are linked yet, so mitigation relies on version upgrades or compensating controls.

For European organizations, the primary impact of CVE-2025-41096 is the unauthorized disclosure of sensitive contract date information managed within BOLD Workplanner. This can lead to breaches of confidentiality, potentially exposing business-critical scheduling and contractual timelines to unauthorized internal users. Such exposure could undermine competitive advantages, violate data protection regulations like GDPR if personal data is involved, and damage trust with clients or partners. Since the vulnerability requires only authenticated access, insider threats or compromised user credentials could be leveraged to exploit this flaw. The lack of impact on integrity and availability limits the threat to data leakage rather than system disruption or data manipulation. However, the sensitive nature of contract details means that even confidentiality breaches can have significant operational and legal consequences. Organizations relying on BOLD Workplanner for contract management should assess their exposure and prioritize remediation to avoid compliance issues and reputational damage.

1. Upgrade BOLD Workplanner to version 2.5.25 or later as soon as the patch becomes available from GLOBAL PLANNING SOLUTIONS S.L. 2. Until patching is possible, implement strict access controls and role-based permissions to limit authenticated user access to contract details only to authorized personnel. 3. Conduct thorough audits of user permissions and monitor access logs for unusual or unauthorized attempts to access contract data. 4. Employ input validation and parameter filtering at the application or proxy level to detect and block suspicious manipulation of internal identifiers. 5. Educate users about the risks of credential compromise and enforce strong authentication mechanisms, such as multi-factor authentication, to reduce the risk of unauthorized access. 6. Coordinate with GPS support or vendor channels to obtain official patches or workarounds and stay informed about any emerging exploit reports. 7. Review and enhance contract data classification and handling policies to minimize exposure of sensitive information within the system.