Share
## https://sploitus.com/exploit?id=56B23124-BBED-555B-971E-49318EF4DA4C
# โ ๏ธ CVE-2025-34152 โ Shenzhen Aitemi M300 Wi-Fi Repeater RCE
## ๐จ Overview
Shenzhen Aitemi M300 Wi-Fi Repeater is affected by an **unauthenticated remote code execution (RCE)**.
* No login required
* Does **not** reboot the device
* Can be exploited remotely
---
## ๐ Vulnerable Versions
| Version | Status |
| ------- | ----------------------- |
| 1.0.x | โ Vulnerable |
| 1.1.x | โ Vulnerable |
| 1.2.x | โ Vulnerable |
| 2.0.x | โ ๏ธ Check Vendor Updates |
---
## ๐ก Remediation
* Update to the latest firmware from vendor
* Restrict management interface access (LAN only)
* Enable firewall rules to block WAN access
* Monitor logs for suspicious requests
---
---
## ๐งช PoC (Lab Use Only)
> โ ๏ธ Do **not** use on public devices, only in a controlled lab environment.
```bash
go run CVE-2025-34152.go
```
---
## ๐ References
* [CVE Details](https://www.cvedetails.com/cve/CVE-2025-34152)
* Vendor Advisory: Shenzhen Aitemi official site
* Exploit analysis: Security blogs