How to fix EUVD-2025-201181?

Within 24 hours: Identify all Ion Torrent OneTouch 2 INS1005527 devices in your environment and document their network location and data sensitivity. Within 7 days: Implement network segmentation to restrict SSH access (port 22) to these devices from untrusted networks; require VPN or firewall rules limiting connectivity to authorized administrative personnel only. Within 30 days: Evaluate replacement or decommissioning of affected devices; if continued operation is necessary, change root password from default 'ionadmin' to a strong credential and implement network-based SSH access controls with monitoring.

Is Ion Torrent Onetouch 2 Firmware affected by EUVD-2025-201181?

Thermo Fisher Ion Torrent OneTouch 2 devices contain a critical vulnerability enabling unauthenticated root access via default credentials, posing a severe risk to laboratory operations and data integrity.

EUVD-2025-201181

| CVE-2025-53963 CRITICAL

2025-12-04 [email protected]

9.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 15, 2026 - 16:35 vuln.today

EUVD ID Assigned

Mar 15, 2026 - 16:35 euvd

EUVD-2025-201181

CVE Published

Dec 04, 2025 - 15:15 nvd

CRITICAL 9.8

Description

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. They run an SSH server accessible over the default port 22. The root account has a weak default password of ionadmin, and a password change policy for the root account is not enforced. Thus, an attacker with network connectivity can achieve root code execution. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Analysis

A remote code execution vulnerability (CVSS 9.8). Critical severity with potential for significant impact on affected systems.

Technical Context

Vulnerability type: remote code execution. CVSS 9.8 indicates critical severity with likely remote exploitation vector.

Affected Products

['Unspecified product']

Remediation

Monitor vendor channels for patch availability.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +49

POC: 0

EUVD-2025-201181 vulnerability details – vuln.today

Back

EUVD-2025-201181

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

EUVD-2025-201181

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code