CVE-2026-58457
Shenzhen Aitemi E Commerce Co. · M300 Wi-Fi Repeater
The Shenzhen Aitemi M300 Wi-Fi Repeater is vulnerable to unauthenticated OS command injection via the smacfilter_conf handler, allowing remote attackers to execute arbitrary shell commands as root.
Executive summary
A critical OS command injection vulnerability in the Shenzhen Aitemi M300 Wi-Fi Repeater allows unauthenticated attackers to achieve full root-level device compromise.
Vulnerability
This is an OS command injection vulnerability triggered by the lack of sanitization in the smacfilter_conf web backend handler. An unauthenticated, network-adjacent attacker can inject malicious shell commands into specific GET parameters, which are then executed with root privileges.
Business impact
Successful exploitation grants an attacker full root-level control over the affected Wi-Fi repeater. This allows for persistent unauthorized access to the local network, traffic interception, and potential lateral movement into internal systems. Given the CVSS score of 9.8, the risk of total device takeover and subsequent network compromise is extreme.
Remediation
Immediate Action: Update the firmware of the Shenzhen Aitemi M300 Wi-Fi Repeater to the latest version provided by the manufacturer.
Proactive Monitoring: Review web access logs for unusual GET requests containing semicolon-delimited payloads directed at the smacfilter_conf handler.
Compensating Controls: Restrict access to the device management interface to trusted administrative subnets or disable remote management features until the firmware is updated.
Exploitation status
Public Exploit Available: No
Analyst recommendation
This vulnerability represents a critical security risk due to the potential for unauthenticated root access. Administrators should prioritize the application of firmware updates immediately to prevent unauthorized device control and potential network-wide security breaches.