Because scanning tells you what is present, not what can still be exploited in a running workload. Once the container is live, the attacker targets execution paths, process behaviour, and accessible resources. If the organisation cannot patch immediately, the risk persists until a runtime control limits the exploit path.
Why This Matters for Security Teams
Container scanning is valuable, but it is only a snapshot of known weaknesses at build or admission time. A vulnerability can remain dangerous because exploitation happens at runtime, where the attacker uses process context, mounted secrets, network reachability, and inherited privileges that a scanner cannot fully model. NIST’s NIST Cybersecurity Framework 2.0 emphasises continuous risk management, which is the right mental model here.
The practical gap is that many teams treat “found” as if it means “contained.” It does not. If the vulnerable image is already deployed, the exposure persists until the workload is patched, isolated, or constrained by compensating controls. That matters even more when the container can reach internal services or mounted credentials, because the blast radius often extends far beyond the container itself. In app security terms, the issue is not the vulnerability record, but the reachable exploit path. NHIMG research on the State of Secrets in AppSec shows how often credential sprawl and slow remediation keep exposure active long after discovery. In practice, many security teams encounter container compromise only after lateral movement has already begun, rather than through intentional containment.
How It Works in Practice
A scan identifies package versions, known CVEs, and sometimes misconfigurations. Runtime risk is different. Once a container starts, exploitation depends on what the process can actually touch: shell access, writable filesystems, mounted service account tokens, cloud metadata endpoints, open sockets, and inherited capabilities. That is why runtime controls matter as much as image hygiene. A vulnerable library may be present, but the exploit becomes real only if the attacker can execute code and reach something useful.
Security teams usually layer controls rather than rely on one gate. Current practice often includes:
- Scanning images before deploy, then blocking only the highest-risk findings.
- Running containers as non-root and dropping unused Linux capabilities.
- Using read-only filesystems and minimizing mounted secrets.
- Applying network policies to limit east-west movement.
- Adding runtime detection to watch for suspicious exec, file writes, or privilege escalation.
This is where guidance from NIST Cybersecurity Framework 2.0 lines up with operational reality: know what is deployed, reduce exposure, and monitor for active abuse. For NHI-adjacent risk, NHIMG’s JetBrains GitHub plugin token exposure illustrates how a compromised token or secret can turn a “known vulnerability” into immediate access abuse. These controls tend to break down in high-density orchestration environments where workloads are highly ephemeral and service-to-service trust is broad, because the attack surface changes faster than ticket-based remediation can keep up.
Common Variations and Edge Cases
Tighter runtime control often increases operational overhead, requiring organisations to balance blast-radius reduction against deployment speed and service stability. Not every vulnerability justifies the same response, and current guidance suggests risk-based triage rather than universal blocking. A harmless low-severity issue in an unreachable build container is not the same as the same flaw in a long-lived internet-facing workload with mounted credentials.
Edge cases often appear when patching is not immediate. If an application cannot be rebuilt quickly, compensating controls become the priority, but there is no universal standard for this yet. Teams usually combine temporary network isolation, reduced privileges, and runtime alerts while they prepare a fixed image. The decision also changes when containers host secrets or tokens. Even if the vulnerability itself is not directly exploitable, a successful code execution path can expose credentials and turn a local issue into a broader incident. That is why NHIMG’s research on The State of Secrets in AppSec matters here: leaked or overexposed secrets extend the lifespan of a vulnerability long after the scan is complete.
For teams operating at scale, the real question is not whether a scan found a flaw, but whether the live workload still has enough privilege, reach, and secret access for that flaw to matter.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST AI RMF set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| NIST CSF 2.0 | DE.CM-8 | Container risk persists at runtime, so continuous monitoring is essential. |
| OWASP Non-Human Identity Top 10 | NHI-03 | Containers often fail when exposed secrets remain usable after discovery. |
| NIST AI RMF | Risk management must account for operational context, not just scan output. |
Use AI RMF-style governance to assess whether a vulnerability is reachable in the deployed state.
Related resources from NHI Mgmt Group
- Why does identity matter more when vulnerabilities are discovered faster than they can be patched?
- Why do still-valid secrets matter after public disclosure?
- What are common vulnerabilities associated with service accounts in AI deployments?
- Why do secrets stay dangerous even when they are no longer actively used?