Key summary:

A device authenticated to a wifi router can abuse MAC IDs to become an AitM between the router and any other device on any of the router’s networks.

This attack can be pulled off from a compromised IoT device on a guest network that is supposed to be limited to Internet access and not be able to see other devices.