Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability".
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11936