A critical security vulnerability has been identified in multiple India-based CCTV camera systems, notably from manufacturers D-Link India Limited, Sparsh Securitech, and Securus CCTV. The flaw, categorized as a missing authentication issue (CWE-306), allows unauthorized access to video feeds and administrative credentials, posing significant risks to surveillance infrastructure. While D-Link has issued a security update, Sparsh Securitech and Securus CCTV have not responded to requests for model-specific information. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged immediate patching and recommended robust defensive measures, emphasizing the importance of securing these devices to protect businesses and critical infrastructure across India.