What would be the difficulty level for it to just read the machine code; are these models heavily relying on human language for clues?

That's a pretty big gimme!

It's not a far step from having the firmware binaries and doing analysis with ghidra, etc.