CVE-2021-28344: 
vulnerability analysis and mitigation

CVE-2021-28344 is a Remote Procedure Call Runtime Remote Code Execution Vulnerability identified in Microsoft Windows systems. The vulnerability was first recorded on March 12, 2021, and publicly disclosed on April 13, 2021. This vulnerability affects multiple versions of Microsoft Windows including Windows 10, Windows 8.1, and Windows 7 SP1 (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating network accessibility, low attack complexity, and requires low privileges with no user interaction. Under CVSS v2.0, it received a medium severity score of 6.5 (NVD).

This vulnerability could allow an attacker to execute remote code with high impacts on confidentiality, integrity, and availability of the affected systems. The severity scoring indicates potential for complete compromise of system confidentiality, integrity, and availability if successfully exploited (NVD).

Microsoft has released security patches to address this vulnerability. Users are advised to apply the appropriate security updates through the Microsoft Security Update Guide (Microsoft Advisory).