Fortinet has released critical updates for FortiManager to patch a vulnerability exploited by Chinese threat actors. The company has privately informed customers and offered temporary mitigation steps, though details about the flaw and an associated CVE remain undisclosed. The issue seems linked to Fortigate-to-FortiManager communication. Researchers believe this flaw is being used in espionage campaigns targeting managed service providers.