If they don't get scanned, then they also don't get fixed, so if they have the same amount of holes, they will stay vulnerable for longer.

Maybe for a while, but there's nothing stopping LLMs from examining disassembler output.