An issue in Open Network Foundation ONOS v2.7.0 allows attackers to create fake IP/MAC addresses and potentially execute a man-in-the-middle attack on communications between fake and real hosts.
This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.