Preface: Each SharePoint site comes with default groups and permissions.There are several options when it comes to managing permissions in SharePoint.
But you should be aware somethings!
Background: Default Permissions in SharePoint. By default, all SharePoint sites are created with the three security groups below:
• Owners – Have full control over the site
• Members – Can add and edit the content (files, lists, etc) on the site
• Visitors – Can only read
What are the levels of SharePoint site? The default permission levels are Limited Access, Read, Contribute, Design, and Full Control.
SharePoint Server permission levels are defined at the site collection level and are inherited from the parent object by default.
Vulnerability details: CVE-2023-33142 – Microsoft SharePoint Server Elevation of Privilege Vulnerability.
Since Microsoft did not release the technical details. See whether this vulnerability (CVE-2023-33142) will have similarity with attached diagram description?
Official announcement: For details, please refer to the link – https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33142