Concerning the posted screenshot please note the following:
Concerning CVE-2019-0220:
Most Apache vulnerabilities are detected based on the exposed version within the banner. As most common software like e.g. Apache (similar is valid for Samba, nginx, PHP, …) running on Linux systems is covered by backports (with security updates not raising the actual exposed version) these version checks are “unreliable” (as these would cause false positives like seen on Shodan) and are not shown by default in GVM due to a “low” QoD.
You can read more about this topic here:
https://docs.greenbone.net/GSM-Manual/gos-21.04/en/reports.html#quality-of-detection-concept