Primary

Context

Thermo Fisher Ion Torrent OneTouch 2 SSH Credential Vulnerability Allowing Root Code Execution

Vulnerability

A vulnerability exists in the Thermo Fisher Ion Torrent OneTouch 2 system, specifically in devices with the catalog number INS1005527. These devices run an SSH server on the default port 22. The root account is protected by a weak default password, 'ionadmin', and there is no enforced password change policy for the root account. As a result, an attacker with network access can gain root privileges and execute code. This vulnerability affects only unsupported products.

Impact

Exploitation of this vulnerability allows for unauthorized root access and code execution on the affected device.

Remediation

Users are advised to change the default root password and review their network configuration to minimize exposure to this vulnerability. Additionally, ensure that the device is not connected to the public Internet without proper security measures, such as a firewall.

Added: Dec 4, 2025, 3:40 PM

Updated: Dec 4, 2025, 6:43 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

1.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

1.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Thermo Fisher Ion Torrent OneTouch 2 SSH Credential Vulnerability Allowing Root Code Execution

Vulnerability

Impact

Remediation

Affected Products

Thermo Fisher Ion OneTouch 2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating