Hello,
and welcome to this community forums.
As announced via GVM 21.04 (end-of-life, initial release 2021-04-16) version 21.04 introduced CVSSv3.0/CVSSv3.1 support and if available these “newer” scoring variants takes precedence over the “old” CVSSv2.0 one.
In the VT example as given in the initial posting one can see that the following attached CVE has the highest severity:
https://nvd.nist.gov/vuln/detail/CVE-2016-2183
which has:
- CVSSv2: Base Score: 5.0 MEDIUM
- CVSSv3.x: Base Score: 7.5 HIGH