CVE-2025-34152 is a critical unauthenticated OS command injection vulnerability affecting the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02). The vulnerability exists in the handling of the 'time' parameter within the '/protocol.csp?' HTTP endpoint. Specifically, the input provided to this parameter is passed directly to the internal date '-s' command without proper sanitization or neutralization of special characters, allowing an attacker to inject arbitrary OS commands. This injection occurs without requiring authentication, user interaction, or causing visible configuration changes or service disruptions, making it stealthy and potentially more dangerous. The vulnerability leverages CWE-78, which relates to improper neutralization of special elements used in OS commands. The CVSS v4.0 score is 9.4 (critical), reflecting the high impact on confidentiality, integrity, and availability, as well as the ease of exploitation over the network without privileges or user interaction. Although no known exploits are currently in the wild, the vulnerability's characteristics make it a prime target for attackers aiming to gain remote code execution on affected devices. The M300 Wi-Fi Repeater is likely used in various environments to extend wireless network coverage, and compromise could lead to network pivoting, data interception, or persistent footholds within organizational networks.

For European organizations, this vulnerability poses a significant risk, especially for those relying on Shenzhen Aitemi M300 Wi-Fi Repeaters in their network infrastructure. Successful exploitation could allow attackers to execute arbitrary commands remotely, potentially leading to full device compromise. This can result in unauthorized access to internal networks, interception or manipulation of network traffic, disruption of network services, and use of the compromised device as a launchpad for further attacks. Given the stealthy nature of the exploit (no visible configuration changes or service disruption), detection and incident response may be delayed, increasing the window of opportunity for attackers. Organizations in sectors with high security requirements such as finance, healthcare, critical infrastructure, and government could face severe confidentiality breaches, operational disruptions, and reputational damage. Additionally, compromised repeaters could be used to exfiltrate sensitive data or launch attacks against other connected systems, amplifying the threat.

1. Immediate network segmentation: Isolate Shenzhen Aitemi M300 Wi-Fi Repeaters from critical network segments to limit lateral movement if compromised. 2. Monitor network traffic for unusual activity originating from or targeting these devices, focusing on HTTP requests to '/protocol.csp?' endpoints with suspicious 'time' parameter values. 3. Implement strict input validation and filtering at network perimeter devices or proxies to block malformed or suspicious requests targeting the vulnerable endpoint. 4. Since no official patch is currently available, consider replacing affected devices with models from vendors with timely security updates. 5. Employ host-based intrusion detection systems (HIDS) on critical network segments to detect anomalous command execution patterns. 6. Conduct regular vulnerability assessments and penetration testing focusing on IoT and network edge devices to identify similar weaknesses. 7. Maintain an inventory of all deployed Shenzhen Aitemi devices and restrict administrative access to trusted personnel only. 8. Engage with the vendor for updates or patches and subscribe to vulnerability advisories to apply fixes promptly once available.