The Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) contains a critical OS command injection vulnerability identified as CVE-2025-34150. The vulnerability exists in the PPPoE configuration interface, specifically in the handling of the 'user' parameter. During network setup, this parameter is processed without proper input validation or sanitization, allowing an attacker to inject malicious shell commands. Because the commands execute with root privileges, an attacker can gain full control over the device remotely without any authentication or user interaction. The vulnerability is classified under CWE-78 (Improper Neutralization of Special Elements used in an OS Command), indicating that special characters or command sequences are not properly neutralized before execution. The CVSS 4.0 vector indicates an attack vector of adjacent network (AV:A), low attack complexity (AC:L), no privileges required (PR:N), no user interaction (UI:N), and high impact on confidentiality, integrity, and availability (VC:H/VI:H/VA:H). This means an attacker within the local network or connected via PPPoE can exploit this flaw easily to compromise the device. Once exploited, the attacker can execute arbitrary commands, potentially leading to device takeover, network disruption, data interception, or lateral movement within the network. No patches or firmware updates have been published yet, and no active exploitation has been reported. The vulnerability affects all versions of the M300 Wi-Fi Repeater, making all deployed devices vulnerable. This issue poses a significant risk to network security, especially in environments relying on these repeaters for connectivity.

For European organizations, the impact of CVE-2025-34150 can be severe. The M300 Wi-Fi Repeater is often deployed in small office/home office (SOHO) environments and branch offices, which may serve as entry points into larger corporate networks. Exploitation could allow attackers to gain root access to the device, enabling them to manipulate network traffic, intercept sensitive data, or use the compromised device as a foothold for further attacks. This could lead to data breaches, disruption of business operations, and compromise of internal systems. Critical infrastructure sectors such as finance, healthcare, and government agencies that rely on stable and secure network connectivity could face operational outages or espionage risks. The vulnerability’s ease of exploitation without authentication increases the threat level, especially in environments where network segmentation is weak or where these devices are accessible from less trusted network segments. Additionally, the lack of available patches means organizations must rely on network-level mitigations and device isolation, increasing operational complexity and risk exposure.

1. Immediately isolate Shenzhen Aitemi M300 Wi-Fi Repeaters from critical network segments and restrict access to the PPPoE configuration interface to trusted administrators only, preferably via VPN or secure management VLANs. 2. Implement strict network segmentation to limit the exposure of these devices to untrusted or guest networks. 3. Monitor network traffic for unusual PPPoE configuration requests or suspicious command injection patterns targeting the 'user' parameter. 4. Disable PPPoE configuration interfaces if not required or replace the device with a more secure alternative where feasible. 5. Employ intrusion detection/prevention systems (IDS/IPS) with custom signatures to detect exploitation attempts targeting this vulnerability. 6. Regularly audit device firmware versions and vendor communications for forthcoming patches or firmware updates addressing this vulnerability. 7. Educate network administrators about the risks and signs of exploitation to ensure rapid detection and response. 8. Consider deploying endpoint detection solutions on connected hosts to detect lateral movement originating from compromised repeaters. 9. If possible, restrict physical and network access to the devices to prevent unauthorized configuration changes. 10. Prepare incident response plans specifically addressing potential compromise of network infrastructure devices.