I would suggest all to disable port 2086 2082 and ensure that you turn cookie authentication on. Lets just say I think there is a issue with http authentication with WHM that can be exploited. I have notified cPanel in regards to the issue and they are working on a fix.

You found an exploit in WHM/cP that cPanel has acknowledged?

Hence its always recommended to use secured access port 2087 and 2083.

Are there any further detail on this ?