CVE-2025-48056

Name of the Vulnerable Software and Affected Versions Hubble CLI versions prior to 1.17.2

Description Hubble is a fully distributed networking and security observability platform for cloud native workloads. A network attacker could inject malicious control characters into Hubble CLI terminal output, potentially leading to loss of integrity and manipulation of the output. This could be leveraged to conceal log entries, rewrite output, or even make the terminal temporarily unusable. Exploitation of this attack would require the victim to be monitoring Kafka traffic using Layer 7 Protocol Visibility at the time of the attack.

Recommendations For versions prior to 1.17.2, update to Hubble CLI v1.17.2 to resolve the issue. As a temporary workaround for users who are unable to upgrade, direct Hubble flows to a log file and inspect the output within a text editor.