Hi,
You are correct, using privilege is the simplest solution and you tried the correct things. It should work without privilege when the udev rules are set up on the host.
I think mounting the dev volume is only necessary to get access to the camera when plugged in after the container started.
What exact commands did you use?