I have both done pentests and received pentest reports. My observation is that the perceived severity often varies between the tester and the customer.