The vulnerability in the Docker image is due to a third-party open-source component, ImageMagick, which has demonstrated many security vulnerabilities over the years, including the famous ImageTragick vulnerability (CVE-2016-3714). This vulnerability can be exploited by creating specially crafted image files that bypass the parsing functionality of the ImageMagick library, allowing an attacker to inject system commands. The exploit was demonstrated using a Node.js-based web application that uses a vulnerable Docker base image for Node.js. The attack completely bypasses all secure coding conventions and goes beyond the security of the Node.js runtime or open source node modules dependencies. Snyk recommends various alternate base image upgrades that can improve the security of the application by reducing the number of vulnerabilities and using more secure base images.