See some answers here:
https://forum.mendix.com/link/questions/111799
https://forum.mendix.com/link/questions/111800
Mendix have now posted an official update: https://status.mendix.com/incidents/8j5043my610c
”We can share that Mx Runtime is not exposed to this vulnerability, and that applies to Mx7, Mx8 and Mx9 versions in our Cloud Offering. For the other Platform parts we are investigating and will post a more in-depth update shortly.”