Share
## https://sploitus.com/exploit?id=56B23124-BBED-555B-971E-49318EF4DA4C
# โš ๏ธ CVE-2025-34152 โ€“ Shenzhen Aitemi M300 Wi-Fi Repeater RCE

## ๐Ÿšจ Overview

Shenzhen Aitemi M300 Wi-Fi Repeater is affected by an **unauthenticated remote code execution (RCE)**.

* No login required
* Does **not** reboot the device
* Can be exploited remotely

---

## ๐Ÿ›  Vulnerable Versions

| Version | Status                  |
| ------- | ----------------------- |
| 1.0.x   | โŒ Vulnerable            |
| 1.1.x   | โŒ Vulnerable            |
| 1.2.x   | โŒ Vulnerable            |
| 2.0.x   | โš ๏ธ Check Vendor Updates |

---

## ๐Ÿ’ก Remediation

* Update to the latest firmware from vendor
* Restrict management interface access (LAN only)
* Enable firewall rules to block WAN access
* Monitor logs for suspicious requests

---


---

## ๐Ÿงช PoC (Lab Use Only)

> โš ๏ธ Do **not** use on public devices, only in a controlled lab environment.

```bash
go run CVE-2025-34152.go
```

---
## ๐Ÿ”— References

* [CVE Details](https://www.cvedetails.com/cve/CVE-2025-34152)
* Vendor Advisory: Shenzhen Aitemi official site
* Exploit analysis: Security blogs