CVE’s stands for Common Vulnerabilities Exposures, is also known as security flaws in source code.
To identify this kind of security issue in docker images, use the Docker Scout.
Docker Scout is the command line interface used to analyze and identify the CVE’s in docker images.
To know the CVS of any docker image, use below command:
docker scout cves <imagename>
For example, use the image python:3.10-slim
docker scout docker scout cves python:3.10-slim
Below is the output
Actually, the command will show detailed information about CVE's. You will be able to see it once you execute the command.