Cross-database ownership chaining should be disabled
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | sql |
| Provider | |
| Vulnerability Type | omission |
Description#
Cross-database ownership chaining is enabled, allowing users in one SQL Server database to access objects in other databases without separate permissions. This configuration weakens isolation between databases and increases the risk of unintended data exposure.
Impact#
If exploited, users or attackers could gain unauthorized access to sensitive data or functions across multiple databases, leading to potential data leaks, privilege escalation, or compromise of critical information within the SQL environment.
Resolution#
Disable cross database ownership chaining