PT-2026-54917 · Shenzhen Aitemi · M300 Wi-Fi Repeater
Conrad Franke
+1
·
Published
2026-07-01
·
Updated
2026-07-06
·
CVE-2026-58457
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) (affected versions not specified)
Description
An unauthenticated OS command injection exists in the commuos web backend. Network-adjacent attackers can execute arbitrary shell commands by injecting unsanitized input through the
smacfilter conf handler. By appending semicolon-delimited payloads to the name, enable, or mac GET parameters, attackers can manipulate the sprintf() function used to build uci shell commands executed via doSystemCmdComlib(), resulting in full root-level control of the device.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
M300 Wi-Fi Repeater