The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle a specially crafted query. Successful exploitation could allow an authenticated attacker could execute a specially crafted query using $ partition against a table with a Column Store index.