Hello @Gaurav Sharma
I see you're referring to the limitations of Microsoft Defender's vulnerability scanning capabilities.
You're correct that Microsoft Defender Vulnerability Management primarily supports vulnerability scanning for virtual machines (VMs) as the main destination. This includes Azure virtual machines and Azure Arc-enabled machines
Regarding the inventory list, it seems that CS-ES (Cloud Services - Enterprise Scale) instances are not currently included in the supported inventory for Microsoft Defender. This document below might explain why you're not seeing any CS-ES instances protected by it.
https://zcusa.951200.xyz/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-defender-vulnerability-management
You can also look at the following support matrix link for defender for cloud https://zcusa.951200.xyz/en-us/azure/defender-for-cloud/support-matrix-defender-for-cloud#security-benefits-for-azure-services
Hope this helps! If you have any questions, please tag me in your comments.
If I have answered your question, please accept this as answer as a token of appreciation and don't forget to thumbs up for "Was it helpful"!