CVE-2025-53963
Thermo Fisher · Ion Torrent OneTouch 2
The Thermo Fisher Ion Torrent OneTouch 2 device uses a weak default root password, allowing unauthenticated attackers with network access to achieve root-level code execution.
Executive summary
A critical vulnerability in the Thermo Fisher Ion Torrent OneTouch 2 device allows unauthenticated remote attackers to gain full root-level code execution.
Vulnerability
The device ships with an SSH server enabled by default, utilizing a weak hardcoded root password ("ionadmin"). The lack of an enforced password change policy allows any attacker with network connectivity to the device to authenticate as root and execute arbitrary code.
Business impact
With a CVSS score of 9.8, this vulnerability represents an extreme risk, as it allows full system compromise. An attacker gaining root access can exfiltrate data, install persistent backdoors, or use the device as a pivot point for further attacks on the internal network. The impact is compounded by the fact that the affected hardware is no longer supported by the vendor.
Remediation
Immediate Action: Isolate the affected devices from all external networks and disable SSH access if it is not strictly required for current operations.
Proactive Monitoring: Audit network traffic for SSH connections (port 22) attempting to authenticate to these devices from unauthorized hosts.
Compensating Controls: Place the devices behind a strictly controlled firewall or within a segmented VLAN to ensure only authorized management workstations can communicate with them.
Exploitation status
Public Exploit Available: N/A
Analyst recommendation
Given that these devices are reportedly end-of-life and unsupported, the risk of exploitation is permanent. Organizations should prioritize decommissioning these devices or strictly isolating them from the production network to prevent potential compromise.