We have encountered with this vulnerability (QID: 38685) during one of our scans. But the date is exactly 3 years and 3 months. How does this vulnerability calculates date?
For example, between 01.01.2016 to 31.03.2019 (dd.mm.yyyy), there are 1185 days. If this vulnerability calculates the max validity date as 39 months * 30 days (1170 days), it is obviously higher than the detected timeframe, but nevertheless, the dates are exactly 3 years and 3 months apart.
Really confused here