The Linux kernel wireless driver for Realtek (rsi) contains a bug where the rsi_mac80211_config function returns a default error code of –EOPNOTSUPP instead of 0. This unexpected return value triggers a WARN_ON in ieee80211_hw_conf_init and deviates from the behavior of other drivers, which default to success. The flaw represents a CWE‑909 Improper Handling of Driver Configurations and may lead to the rsi driver failing to initialize correctly, potentially causing intermittent Wi‑Fi service disruptions. Although the warning itself does not provide an attack vector, mis‑initialization could degrade the stability of the wireless interface.

The issue affects Linux systems that include the rsi wireless driver code in the kernel. The known affected kernel versions are 6.9 and the 7.0 release candidates 7.0‑rc1 through 7.0‑rc7, as reflected in the encompassed CPE entries. Any system using these kernel releases without the patch is potentially affected. The vulnerability is vendor‑neutral, affecting the Linux kernel image only.

The CVSS score of 5.5 indicates moderate severity, while the EPSS score of <1% suggests a low probability of exploitation and the vulnerability is not listed in CISA's KEV catalog. The nature of the bug is a misconfiguration at driver initialization; there is no documented exploit or escalation path. The likely attack surface is local: an attacker with the ability to interact with the driver (e.g., via device power cycling or parameter changes) could attempt to replay the invalid configuration. Without such capability the risk remains low, so the vulnerability is best treated as a potential driver stability issue rather than a direct security threat.