VYPR

M300 Wi-Fi Repeater

by Aitemi

CVEs (2)

  • CVE-2025-34151CriAug 7, 2025
    risk 0.61cvss epss 0.04

    A command injection vulnerability exists in the 'passwd' parameter of the PPPoE setup process on the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02). The input is passed directly to system-level commands without sanitation, enabling unauthenticated attackers to achieve…

  • CVE-2025-34150CriAug 7, 2025
    risk 0.61cvss epss 0.01

    The PPPoE configuration interface of the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) is vulnerable to command injection via the 'user' parameter. Input is processed unsafely during network setup, allowing attackers to execute arbitrary system commands with root…