CVE-2021-28444: 
vulnerability analysis and mitigation

Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444) was disclosed on April 13, 2021, as part of Microsoft's April 2021 Patch Tuesday updates. The vulnerability affects various versions of Microsoft Windows operating systems running Hyper-V, including Windows 10 and Windows Server versions (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 6.5 (Medium) by NIST with a vector string of CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N. Microsoft Corporation assessed it with a slightly lower CVSS score of 5.7 (Medium) with a vector string of CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N (NVD).

This security feature bypass vulnerability in Windows Hyper-V could potentially allow an attacker to bypass security features, though it does not directly lead to information disclosure or system compromise. The vulnerability specifically impacts the integrity of the system without affecting confidentiality or availability (Trustwave).

Microsoft released security updates to address this vulnerability as part of their April 2021 Patch Tuesday. Users are advised to apply the security updates provided through the Microsoft Update service to affected systems (MSRC).