CVE-2021-28353: 
vulnerability analysis and mitigation

CVE-2021-28353 is a Remote Procedure Call Runtime Remote Code Execution Vulnerability affecting Microsoft Windows systems. The vulnerability was disclosed on April 13, 2021, and has been assigned a high severity rating. This vulnerability is part of a larger group of similar RPC-related vulnerabilities identified in Microsoft systems during the same period (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating network accessibility, low attack complexity, and requiring low privileges with no user interaction. Under CVSS v2.0, it received a medium severity score of 6.5 with the vector (AV:N/AC:L/Au:S/C:P/I:P/A:P) (NVD).

The vulnerability could allow an attacker to execute remote code on affected systems, potentially leading to full system compromise with high impacts on confidentiality, integrity, and availability of the affected system (NVD).

Microsoft has released security patches to address this vulnerability. Affected users and system administrators should apply the available security updates through the Microsoft Security Response Center (MSRC Advisory).