cpe:/a:mendix:mendix:7.23.5 CVE-2019-12996 2019-09-10T15:15:10.483-04:00 2019-09-11T13:15:10.607-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov CONFIRM https://docs.mendix.com/releasenotes/studio-pro/7.23#7236 In Mendix 7.23.5 and earlier, issue in XML import mappings allow DOCTYPE declarations in the XML input that is potentially unsafe.