Siemens Climatix Pol909 is an intelligent network module from Siemens, Germany. security vulnerability exists in versions prior to Siemens Climatix POL909 (AWM module) V11.34, which stems from the fact that the web server of the affected device does not use TLS encryption when transmitting data. An unauthenticated, remote attacker could read sensitive data, such as administrator credentials, or modify data in transit.