Name of the Vulnerable Software and Affected Versions @hapi/accept versions prior to 3.2.4 or 5.0.1

Description The Accept-Encoding HTTP header parser in @hapi/accept has a Denial of Service issue. If the header contains certain invalid values, it causes the function to throw a system error. Since hapi rethrows system errors, the error propagates up the stack. Without an unhandled exception handler, the application will exit, allowing an attacker to shut down services.

Recommendations Upgrade to version 3.2.4 or 5.0.1.