CVE-2022-24470: Azure Site Recovery Remote Code Execution Vulnerability

What privileges does an attacker require to exploit this vulnerability?

Exploiting this vulnerability requires an attacker to compromise admin credentials to the replication appliance, configuration server, or one of the VMs associated with the configuration server.