...
Any security vulnerability that’s reachable from the ENTRYPOINT process can potentially be reached with injection attacks from software exploits.
Dockerfile reference (ENTRYPOINT) https://docs.docker.com/engine/reference/builder/
Solutions: Application Security including Supply-Chain security including SCA (Software Composition Analysis)
...