CVE ID: NA
TRENDnet has received report of command injection and buffer overflow vulnerabilities associate with the TEW-828DRU (firmware 1.0.9.0) configuration pages’ scripts.

This product has reached its End of Life (EOL) and End of Support, and TRENDnet is unable to provide additional support.

TRENDnet recommends customers to retire the product to prevent risk of devices possibly connected to it.

If you cannot replace the TEW-828DRU immediately, please do the following to limit possible attack from hackers.
- Login to the TEW-828DRU’s configuration page http://tew-828dru, click on “Advanced”, under “Administration”, click on “Management”, under “System Management”, scroll down to “Remote Management” “Remote Control via WAN”, click and select “Disable”. (Note: it should be disabled by default).
- Close the TEW-828DRU’s configuration page as soon as you have finished entering the settings. Do not leave it open while using the web browser browsing other internet websites.
- Change the TEW-828DRU’s configuration page password periodically and use strong password (minimum of 12 characters and use numbers, special characters, and letters with upper and lowercase).
- Change the TEW-828DRU’s Wi-Fi password periodically and use strong password.
- Only allow people you can trust to connect to your TEW-828DRU.
- Power off the TEW-828DRU when you are not using it.
- Power cycle the TEW-828DRU every few days by pushing the power button to OFF, wait for 30 seconds, and then pushing the power button to ON.

REVISION: 11-19-2025 initial release