Impact
The vulnerability is a potential deadlock in the mt7921 Wi‑Fi driver for Linux systems. A race between the mt7921_roc_abort_sync roc_work() handler can cause both to wait on the same mutex, resulting in a stand‑still. This is an example of improper synchronization (CWE‑833) and results only in a denial of wireless connectivity; it does not directly compromise confidentiality or integrity.
Affected Systems
The flaw affects any Linux kernel that contains the mt76 driver family for MediaTek MT7921 Wi‑Fi chips. No specific kernel release numbers are listed, so the commit that introduced the fix is potentially vulnerable.
Risk and Exploitability
The CVSS score is 5.5, the EPSS score is < 1%, and the vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the deadlock can be triggered by a local attacker with privileged access who initiates station removal while the driver is performing cleanup. Exploitation would cause the driver to block indefinitely, rendering the network interface unusable until a reboot or driver reload.
OpenCVE Enrichment
Debian DSA