openstack-neutron is vulnerable to authorization bypass. Neutron functionality includes internal firewall management between networks. Due to the relaxed nature of particular rules, it is possible for machines on the same layer 2 networks to forge non-IP traffic, such as ARP and DHCP requests and consequently cause a denial of service or intercept network traffic via a link-local source address.