A container image vulnerability is a security risk that is embedded inside a container image. While vulnerable images themselves don't pose an active threat, if containers are created based on a vulnerable image, the containers will introduce the vulnerability to a live environment.