Omnimetrix · Omniview · CVE-2016-5786
**Name of the Vulnerable Software and Affected Versions**
OmniMetrix OmniView version 1.2
**Description**
An issue was discovered where the OmniView web application transmits credentials using the HTTP protocol, making them susceptible to being intercepted by an attacker, which could result in the compromise of account credentials.
**Recommendations**
For OmniMetrix OmniView version 1.2, consider disabling the use of HTTP protocol for credential transmission until a secure alternative, such as HTTPS, is implemented to encrypt the data in transit.