CVE-2023-38167: Microsoft Dynamics Business Central Elevation Of Privilege Vulnerability

According to the CVSS metric, privileges required is high (PR:H). What privileges does an attacker require to exploit this vulnerability?

Successful exploitation of this vulnerability requires an attacker to already have admin or high privilege access to a security group within the tenant.