Improper access permissions for directory data files could allow unauthorized users to read, modify, or delete directory data. The SYSVOL directory contains public files (to the domain) such as policies and logon scripts. Data in shared subdirectories are replicated to all domain controllers in a domain.
Stig Server: 2016 - https://www.stigviewer.com/stig/windows_server_2016/2019-01-16/finding/V-73371
2019 - https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93031