CISA: Millions of security and home cameras contain a critical software bug that can allow remote attackers to tap into video feeds. The bug (CVE-2021-32934) has been introduced via a supply-chain component from ThroughTek that s used by several original equipment manufacturers (OEMs) of security cameras. The supplier has patched the bug in the latest version of the P2P software development kit, which has been installed in several million connected devices, according to the supplier.
Source: https://threatpost.com/millions-connected-cameras-eavesdropping/166950/