Authentication Bypass by Spoofing
An exploitable denial-of-service vulnerability exists in Systemd through version 245. A specially crafted "DHCP FORCERENEW" packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of "FORCERENEW" and "DCHP ACK" packets to reconfigure the server.
CWE-290 - Authentication Bypass by Spoofing
This attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.