Siemens QMS Automotive is a quality management system for the automotive industry from Siemens, Germany. A security vulnerability exists in Siemens QMS Automotive version V12.39, which stems from a lack of security controls in the affected application to prevent unencrypted communication without HTTPS. The vulnerability can be exploited by an attacker to gain access to a machine in an intermediate location and could manipulate or steal confidential information.