SSMS: Vulnerability Assessment should DB chaing as High
The Vulnerability Assessment rule VA1042 for Database ownership chaining is labeled as a medium risk. Since this setting permits for privilege elevation to sysadmin, it should be labeled as high. As for how to exploit it, see http://www.sommarskog.se/grantperm.html#crossdbchain.
Solomon Rutzky commented
Agreed. And, the Remediation "Description" for this assessment has DB_CHAINING misspelled as "DB_CHANING" (for both QueryValidatedRulesV2 and BackEndQueryValidatedRules). If it helps, "cross db ownership chaining", VA2120, is marked as "high".