In cPanel prior to 66.0.2, weak log-file permissions can occur after account modification (SEC-289).
cpanel cpanel