cPanel prior to 68.0.27 allows malicious users to read zone information because a world-readable archive is created by the archive_sync_zones script (SEC-355).
cpanel cpanel