Hubble

by Ciliumv0.12.0

Last updated Jun 8, 2026

Hubble CLI

Install with winget

$ winget install --id Cilium.Hubble --exact --version 0.12.0

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v0.12.0

Architecture	Type	Scope	Download
x86	Portable	-	Direct
x64	Portable	-	Direct
arm64	Portable	-	Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

25 known CVEs via NVD

medium5.4Fix in v1.17.14CVE-2026-33726affects before 1.17.14, 1.18.8, 1.19.2Mar 26, 2026
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.14, 1.18.8, and 1.19.2, Ingress Network Policies are not enforced for traffic from pods to L7 Services (Envoy, GAMMA) with a local backend on the same node, when Per...
Patch Vendor advisory
medium6.1Patched in wingetCVE-2026-26963affects before 1.18.6Feb 19, 2026
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.18.0 through 1.18.5 will incorrectly permit traffic from Pods on other nodes when Native Routing, WireGuard and Node Encryption are enabled. This issue has been fixed in version...
Patch Vendor advisory
medium4.0Fix in v1.16.17CVE-2025-64715affects before 1.16.17, 1.17.10, 1.18.4Nov 28, 2025
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.16.17, 1.17.10, and 1.18.4, CiliumNetworkPolicys which use egress.toGroups.aws.securityGroupsIds to reference AWS security group IDs that do not exist or are not attach...
Patch Vendor advisory
medium4.0Patched in wingetCVE-2025-32793affects before 1.15.16, 1.16.9, 1.17.3Apr 21, 2025
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.15.0 to 1.15.15, 1.16.0 to 1.16.8, and 1.17.0 to 1.17.2, are vulnerable when using Wireguard transparent encryption in a Cilium cluster, packets that originate from a terminatin...
Patch
low3.4Patched in wingetCVE-2025-30163affects before 1.16.8, 1.17.2Mar 24, 2025
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Node based network policies (`fromNodes` and `toNodes`) will incorrectly permit traffic to/from non-node endpoints that share the labels specified in `fromNodes` and `toNodes` sections of...
Patch
low3.2Patched in wingetCVE-2025-30162affects before 1.15.15, 1.16.8, 1.17.2Mar 24, 2025
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who use Gateway API for Ingress for some services and use LB-IPAM or BGP for LB Service implementation and use network policies to block egress traffic from workloads in a...
Patch
medium6.5Patched in wingetCVE-2025-23047affects before 1.14.19, 1.15.13, 1.16.6Jan 22, 2025
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An insecure default `Access-Control-Allow-Origin` header value could lead to sensitive data exposure for users of Cilium versions 1.14.0 through 1.14.7, 1.15.0 through 1.15.11, and 1.16.0...
Patch
medium5.3Patched in wingetCVE-2025-23028affects before 1.14.18, 1.15.12, 1.16.5Jan 22, 2025
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. A denial of service vulnerability affects versions 1.14.0 through 1.14.7, 1.15.0 through 1.15.11, and 1.16.0 through 1.16.4. In a Kubernetes cluster where Cilium is configured to proxy DNS...
Patch

Showing 8 of 25. Source: NVD, updated 5h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

C
Cilium CLICilium
Cilium.CiliumCLIv0.19.4
Cilium CNI CLI
T
TrivyAqua Security Software
AquaSecurity.Trivyv0.71.0
Trivy is a comprehensive and versatile security scanner.
LensMirantis, Inc.
Mirantis.Lensv2026.5.250609-latest
The Kubernetes IDE
Kubernetes CLIThe Kubernetes Authors
Kubernetes.kubectlv1.36.2
A command line tool for communicating with a Kubernetes cluster's control plane, using the Kubernetes API
Google Cloud SDKGoogle LLC
Google.CloudSDKv572.0.0
Create and manage Google Cloud resources via a command line tool.
mirrordMetalBear
MetalBear.mirrordv3.216.0
Connect your local process and your cloud environment, and run local code in cloud conditions.

More from Cilium or browse cilium, cni, hubble.

Frequently asked questions

How do I install Hubble on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id Cilium.Hubble --exact --version 0.12.0. winget downloads the installer from Cilium and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install Hubble silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id Cilium.Hubble --exact 0.12.0 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

How do I uninstall Hubble via winget?

Run: winget uninstall --id Cilium.Hubble --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from Hubble's Apps & Features entry.

Is Hubble free?

Hubble is distributed under Apache. Refer to the publisher (https://github.com/cilium/hubble) for the full license terms - Wingetly itself does not charge for installation.

Does Hubble work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls Hubble directly from the publisher.

How do I keep Hubble up to date?

Run winget upgrade --id Cilium.Hubble --exact, or winget upgrade --all to update everything winget tracks. We index 1 version of Hubble from microsoft/winget-pkgs.