CVE-2024-26257: Microsoft Excel Remote Code Execution Vulnerability

According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?

An attacker must send the user a malicious file and convince them to open it.