The ath12k driver in the Linux kernel contains a flaw that allows Wake on Wireless (WoW) offloads to be enabled simultaneously on both the primary and secondary links of a multi‑link configuration. When this occurs on a device running the WCN7850 firmware, the firmware crashes, resulting in a local denial‑of‑service that interrupts wireless connectivity. The defect does not provide code‑execution or data‑exfiltration paths; it simply causes a crash due to improper handling of WoW offloads in a multi‑link context.

Systems that run the Linux kernel with any version of the ath12k driver prior to the commit that limits WoW offloads to the primary link are affected. The issue is tied to the WCN7850 hardware, specifically firmware build WCN7850 hw2.0 PCI WLAN.HMT.1.1.c5-00284-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1, in environments where multi‑link mode is enabled. Other Linux kernels that use ath12k but have the patched driver or that use firmware without dual WoW offload support are not impacted.

The CVSS score is 7.8, and the EPSS score is less than 1%; the vulnerability is also not listed in CISA’s KEV catalog. These indicators suggest a relatively low overall exploitation probability. An attacker would need the ability to control firmware settings or trigger the driver into multi‑link mode, which may be limited to local or privileged users or specialized network conditions. The impact is purely availability, with no direct route to remote code execution or confidentiality compromise.