A video-calling toolkit that allows users to make video calls in apps like eHarmony and MeetMe are affected by a flaw that went unpatched for eight months. The flaw makes it easy for third parties to access details about setting up video calls from within the Agora toolkit across various apps. This paves the way for remote attackers to obtain access to audio and video of any ongoing Agora video call through observation of cleartext network traffic
Source: https://threatpost.com/sdk-bug-spy-calls-dating-healthcare-apps/164068/