CVE-2024-26200: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

According to the CVSS metric, user interaction is required (UI:R) and privileges required are none (PR:N). What does that mean for this vulnerability?

An unauthorized attacker must wait for a user to initiate a connection.