Docker is an open source application container engine from the U.S. company Docker. The product supports creating a container (lightweight virtual machine) and deploying and running applications on Linux systems, as well as automating the installation, deployment, and upgrade of applications through configuration files. docker cli-js is vulnerable to code injection, which stems from a vulnerability if the command parameter of the Docker.command method can be at least partially controlled by the user. An attacker could exploit this vulnerability to execute arbitrary operating system commands on the host system.