Microsoft SQL Server versions 2014 through 2022 suffers from a db_ddladmin privilege escalation vulnerability. When escalated to Microsoft as a concern, they instead opted to update their documentation to note that this is possible instead of addressing the issue.
cac3f425f4cca8e96dd9616578d2788098261640c115710127e2b2ec6da21b6c